Configure NetFlow - Cisco Nexus
Posted: Mon Jun 21, 2010 12:38 am
Network Performance and Forensics for Data Center Class Switches
The Nexus 7000 is a highly scalable modular platform that delivers up to 15 terabits per second of switching capacity in a single chassis, supporting up to 512 10-gigabits-per-second (Gbps) Ethernet and future delivery of 40- and 100-Gbps Ethernet.
When dealing with very high traffic volumes, you need a flow monitoring software that is capable of handling such high rates. CySight is the only solution that has been proven to scale to suit the high rates of data centers, internet edges and corporate cores whilst still retaining the most granularity in the industry. CySight currently handles the largest NetFlow sites in the world with millions of flows per minute without melting down or losing flows.
Enabling NetFlow:
Cisco Nexus 7000 Series NX-OS System Management Configuration Guide, Release 4.0
Cisco Nexus 1000V NAM Virtual Service Blade Installation and Configuration Guide
The Nexus 7000 is a highly scalable modular platform that delivers up to 15 terabits per second of switching capacity in a single chassis, supporting up to 512 10-gigabits-per-second (Gbps) Ethernet and future delivery of 40- and 100-Gbps Ethernet.
When dealing with very high traffic volumes, you need a flow monitoring software that is capable of handling such high rates. CySight is the only solution that has been proven to scale to suit the high rates of data centers, internet edges and corporate cores whilst still retaining the most granularity in the industry. CySight currently handles the largest NetFlow sites in the world with millions of flows per minute without melting down or losing flows.
Enabling NetFlow:
- Nexus Switch(config)# feature netflow
- As we are using the default "netflow-original" flow record there is no reason to create a new flow record
- Nexus Switch(config)# flow exporter NetFlowAuditorExporter
Nexus Switch(config-flow-exporter)# destination <NetFlowAuditorIPAddress>- e.g. destination 10.10.10.1
- The IP Address of ethernet 1/1 will be used and identified as the device by CySight
- Port 2055 is enabled as default but you can configure the Port to any UDP Port on CySight under "Configuration -> Devices -> UDP Port".
Nexus Switch(config-flow-exporter-version-9)# exit- Nexus allows v9 or v5. You can use either with CySight
- Nexus Switch(config)# flow monitor NetFlowAuditorMonitor
Nexus Switch(config-flow-monitor)# exporter NetFlowAuditorExporter
Nexus Switch(config-flow-monitor)# record netflow-original
Nexus Switch(config-flow-monitor)# exit
- Nexus Switch(config)#flow timeout active 60
Nexus Switch(config)#flow timeout inactive 15
- Nexus Switch(config)# interface ethernet 1/2
Nexus Switch(config-if)# ip flow monitor NetFlowAuditorMonitor input [Optional Sampler Name]
Nexus Switch(config)# interface ethernet 1/2
Nexus Switch(config-if)# ip flow monitor NetFlowAuditorMonitor input [Optional Sampler Name]
...
Nexus Switch(config)# interface ethernet 2/1
Nexus Switch(config-if)# ip flow monitor NetFlowAuditorMonitor input [Optional Sampler Name]
Nexus Switch(config)# interface ethernet 2/2
Nexus Switch(config-if)# ip flow monitor NetFlowAuditorMonitor input [Optional Sampler Name]
NOTE: Use the ip flow monitor command on every interface of the switch.
Cisco Nexus 7000 Series NX-OS System Management Configuration Guide, Release 4.0
Cisco Nexus 1000V NAM Virtual Service Blade Installation and Configuration Guide