Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3079
Views
5
Helpful
2
Replies

ASR 1006 with IOS 3.13.1S, NetFlow commands not working

Mohammed Asif C Y
Level 1
Level 1

‎11-13-2014 05:02 AM - edited ‎03-05-2019 12:09 AM

Hi,

 

We have Cisco ASR1006 router with IOS asr1000rp1-advipservicesk9.03.13.01.S.154-3.S1-ext.bin, we have recently upgrade IOS from asr1000rp1-advipservicesk9.02.03.02.122-33.XNC2.bin.

After upgrading the IOS ip flow ingress and ip flow egress command is not working.

Please suggest on configuring NetFlow commands on this.

 

 

Regards

MAC

Regards MAC
3 people had this problem
Labels:
0 Helpful
2 Replies 2

darrward
Cisco Employee
Cisco Employee

‎12-23-2014 06:52 PM

You need to change to the Flexible NetFlow feature as traditional NetFlow on ASR1K after 3.10S has been deprecated as per release notes at:

http://www.cisco.com/c/en/us/td/docs/routers/asr1000/release/notes/asr1k_rn_rel_notes/asr1k_feats_important_notes_313s.html#pgfId-3455900

iswift
Level 1
Level 1
In response to darrward

‎02-25-2015 01:10 PM

Also try this link, found if you follow the URL above, and I have made some notes about configuring inbound and outbound flow monitoring :-

 

http://docwiki.cisco.com/wiki/Migrating_from_Traditional_to_Flexible_NetFlow#Flexible_NetFlow_Migration_in_Practice

 

That article was referred in these release notes but don’t follow the link in the release notes, use the link above as it seems to have moved;

http://www.cisco.com/c/en/us/td/docs/routers/asr1000/release/notes/asr1k_rn_rel_notes/asr1k_feats_important_notes_313s.html#pgfId-3455900

 

The syntax I have used is almost the same, except that I don’t think you can quite have the 2 options they mention in the last line;

 

flow exporter FlowExporter1

  destination 192.168.9.101

  transport udp 9996

  export-protocol netflow-v5

  source FastEthernet 0/1

flow monitor FlowMonitor1

  record netflow ipv4 original-input

  exporter FlowExporter1

  cache timeout active 1

  cache timeout inactive 15

interface FastEthernet 0/1

  ip flow monitor FlowMonitor1 [input|output]  <<<  with the netflow record above only input is ok

 

 

According to the command reference I looked at when you use the ipv4 ‘netflow’ flow record with ‘original-input’, it can only monitor inbound packets and vice-versa for ‘original-output’, therefore I think you need the pair of settings as we have done.

[see here http://www.cisco.com/c/en/us/td/docs/ios/fnetflow/configuration/guide/12_2sr/fnf_12_2_sr_book/get_start_cfg_fnflow.html#wp1059480 ]

 

flow monitor FlowMonitor1

  record netflow ipv4 original-input

flow monitor FlowMonitor2

  record netflow ipv4 original-output

 

interface FastEthernet 0/1

  ip flow monitor FlowMonitor1 input

  ip flow monitor FlowMonitor2 output

 

Rgds

Ian

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card