Hello,
Anyone know if Netflow can be used on a Cisco ASA 5520 ?
Cheers
Colin
See this KB for more information. http://knowledgebase.solarwinds.com/kb/questions/795/Configuring+Cisco+ASA+devices+for+use+with+Orion+NTAhttp:/knowledgebase.solarwinds.com/kb/questions/795/Configuring+Cisco+ASA+devices+for+use+with+Orion+NTA
Note that there is a typo:
logging flow-export syslogs disable should be logging flow-export-syslogs disable
Cisco has changed its ways! Cisco ASA now supports NetFlow. The new feature in Cisco ASA version 8.2 is called NSEL (NetFlow Security Event Logging) and it allows all ASA models to support NetFlow. Below I have provided the NetFlow configuration of a Cisco ASA.
flow-export destination inside x.x.x.x xxxx(Collector & Port)access-list flow_export_acl permit ip host x.x.x.x host x.x.x.x
class-map flow_export_classmatch access-list flow_export_acl
policy-map flow_export_policyclass flow_export_class
flow-export event-type flow-creation destination x.x.x.x(Collector IP)
service-policy flow_export_policy global
To see all event type records with NetFlowevent-type all
If you disable logging for flow export events this will increase performancelogging flow-export syslogs disable
reference www.plixer.com/.../
