cancel
Showing results for 
Search instead for 
Did you mean: 
Create Post
Level 9

NTA - How to monitor traffic on a Cisco ASA5525

How can I do this?

Labels (1)
Tags (1)
0 Kudos
2 Replies
Level 12

This is the link I always recommend:

https://supportforums.cisco.com/document/30476/configuring-netflow-asa-asdm

Make sure you have firmware 8.2.1 and when configuring, set the template timeout to 1 minute.

0 Kudos

Hi jdmarshburn1

Some info here but it looks like it is problematic. The possibility of slowing down the appliance is the one that worries me.

How to monitor Cisco ASA Firewalls using NetFlow 9 and PRTG? | Paessler Knowledgebase

Another option is to use a SPAN or mirror port to monitor the traffic going to and from the ASA5525. You wont impact on firewall performance and it should be easy to setup a SPAN port on the switch that your firewall is connected to. Once you have your SPAN port setup you can connect NPM with DPI configured, use nProbe to get NetFlow stats or use a third party tool like LANGuardian to analyze the traffic. You can see an example of LANGuardian integrated with Orion at the link below

http://demo2.netfort.com/Orion?AccountID=guest

Hope this helps,

Darragh

0 Kudos