35 Replies Latest reply on May 2, 2017 9:26 AM by rschroeder

    NTA wireless lan controller problem

    jorgerobledod

      Why is the configuration not working  ?


      Configuring NetFlow

      Information About NetFlow

      NetFlow is a protocol that provides information about network users and applications, peak usage times, and traffic routing. The NetFlow protocol collects IP traffic information from network devices to monitor traffic. The NetFlow architecture consists of the following components:

      • Collector—Entity that collects all the IP traffic information from various network elements.
      • Exporter—Network entity that exports the template with the IP traffic information. The controller acts as an exporter.

        Configuring NetFlow (GUI) 

       


       

      Step 1  

      Configure the Exporter by following these steps:

      1. Choose Wireless > Netflow > Exporter.
      2. Click New.
      3. Enter the Exporter name, IP address, and the port number.
      The valid range for the port number is from 1 to 65535.
      1. Click Apply.
      2. Click Save Configuration.
      Step 2   

      Configure the NetFlow Monitor by following these steps:

      1. Choose Wireless > Netflow > Monitor.
      2. Click New and enter the Monitor name.
      3. On the Monitor List page, click the Monitor name to open the Netflow Monitor > Edit page.
      4. Choose the Exporter name and the Record name from the respective drop-down lists.
      5. Click Apply.
      6. Click Save Configuration.
      Step 3   

      Associate a NetFlow Monitor to a WLAN by following these steps:

      1. Choose WLANs and click the WLAN ID to open the WLANs > Edit page.
      2. In the QoS tab, choose the NetFlow Monitor from the Netflow Monitor drop-down list.
      3. Click Apply.
      4. Click Save Configuration.

       

        • Re: NTA wireless lan controller problem
          mebway

          Hello Jorge,

           

          It is not an issue with how you are configuring your device, it is that NTA is not properly getting all required fields for report on NetFlow.  This is a known feature request and I have added your vote to my internal counts.

          Thanks

          Marcus

          1 of 1 people found this helpful
          • Re: NTA wireless lan controller problem
            carl.smith@hrrnp.com

            I am seeing the same issue and will vote for the NTA/WLC compatibility feature.

              • Re: NTA wireless lan controller problem
                jeff.stewart

                Current versions of NTA don't support the WLC for NetFlow collection.  However, if you are an customer under active maintenance NTA 4.2 RC is available.  This version adds support for Cisco WLC NetFlow collection.  We would like to get your feedback if you have a chance to test it out.

                3 of 3 people found this helpful
                  • Re: NTA wireless lan controller problem
                    laurin.beckhusen

                    Hi Jeff,

                     

                    I am willing to give it a shot. Is there a roll back plan if sometime goes bad.... Sounds like I just need to download the bits and install the upgrade....?

                     

                    Best,

                    Laurin

                    • Re: NTA wireless lan controller problem
                      laurin.beckhusen

                      Hi Jeff,

                       

                      I updated NPM and NTA today. Everything went a ok so far ! I'm curious to see what the flow data looks like!

                        • Re: NTA wireless lan controller problem
                          jeff.stewart

                          Awesome, please let me know what you think.

                            • Re: NTA wireless lan controller problem
                              laurin.beckhusen

                              So far so good.

                               

                              Haven't messed with NTA much yet, but my goal is to add all my thin access points to a dashboard object so I can see the send / receive traffic from them in 1 place.

                               

                              We have a couple of switch stacks so it was cool to see the stack info and which ones have power stack ports etc..

                               

                              I am looking at netpath to map out connections between offices. Hoping to use it to ferret out any issues that may exist between nodes and get information on might be the "weakest link"

                               

                              -L

                            • Re: NTA wireless lan controller problem
                              rschroeder

                              If you're comfortable with it, please share the results of your NTA 4.2 RC install adventure.

                               

                              • Challenging or easy?
                              • What problems did you experience?
                              • What limitations did you discover--if any?

                               

                              Finally, I think we'd all be interested in any NTA screens shots showing your WLC's Netflow output.  This might be the item that persuades many people to go to NTA 4.2 RC.

                               

                              Thanks for your investigations!

                                • Re: NTA wireless lan controller problem
                                  laurin.beckhusen

                                  The install process wasn't too bad. The reason I say this is the NTAinstaller kept complaining about needing to upgrade netflow database. So I go over to upgrade the Netflow DB, go back to upgrade NTA an got the same message. Ended up rebooting the server and trying again and it worked... *scratched head and moved on* Other than that the upgrade process was quite simple. I wish the documentation was better. I downloaded NPM and NTA and each had sepearate install guides both referencing online pdf's. I was hoping for more of a quick 1.2.3 landing page or something. Shutdown processs, install NPM -> upgrade NTA flow db -> upgrade NTA.

                                   

                                  Possibly in the future solarwinds could add RC upgrade processes to the upgrade advisor? Hey heres a tool we keep talking about to use. O wait, you can't use it for RC products..... wah wah wah....

                                   

                                  First time seeing flow data in NPM and also learning the new interface, so I am not sure where the best place to view wireless flow data is. For other devices, just click the node and then the interface... Doesn't quite work the same for the WLC..

                                   

                                  NTA sample WLC.png

                                   

                                   

                                  If you know of a better place to look let me know.

                                    • Re: NTA wireless lan controller problem
                                      jeff.stewart

                                      First, did you configure the WLC to send NetFlow data to NTA?  If so, you should see the WLC listed on the NTA Summary Page.  In addition if you go to the WLC Node Details page you should see some new NetFlow resources.

                                       

                                      Jeff

                                        • Re: NTA wireless lan controller problem
                                          laurin.beckhusen

                                          Hi Jeff,

                                           

                                          Yes the WLC has been configured. I do see it on the NTA summary page as well.You can click on it, but it seems to take you to a NPM style view of the device.( Listing of the AP's, average packet-loss, node details, etc). I am comparing with an asa or router, where if I click on the node from the NTA summary page I then get to a netflow node details page( top 5 conversations, applications, etc.) but the link is under "traffic anayalsis" & the wlc link takes me to a node detail page under "netperfmon".

                                          NetPerfMon/NodeDetails.aspx? ( for wlc)

                                          trafficAnalysis/NetflowNodeDetails.aspx? ( for routers / asa)

                                           

                                          So, my thought is the navigation should be similar. I am in NTA and click on a link i would expect NTA related info.....  Other piece I noticed is the wireless summary view. Nice page! I like the two views ( ap's vs clients) I wish it had the time frame for the statistics though.... For instance I have a user using a lot of bandwidth, but what is the time frame? Is it since he has been connected.. We have long lease timers for dhcp, so perhaps this traffic isn't all from today..... Not complaining in any way, Just pointing out what I have noticed.

                                           

                                          Laurin

                                        • Re: NTA wireless lan controller problem
                                          rschroeder

                                          Thank you, Laurin.  I appreciated and enjoyed your humorous lament for improved coordination and documentation.  Too often installation or upgrade instructions are written from a specialist's point of view, not from that of one who has to wear a hundred different hats.  Having the luxury of focusing primarily on one product, as the installation/upgrade designers must, sometimes seems to fail in their goal of making an installation or upgrade intuitive and quick.

                                        • Re: NTA wireless lan controller problem
                                          techkid107

                                          My upgrade was very simple.Im liking the new UI it looks much better. Didn't have any problems upgrading NPM NTA nor SAM but NTA isnt showing that its getting any netflow traffic from my WLC.

                                          • Re: NTA wireless lan controller problem
                                            JessicaWalsh

                                            I've got NTA 4.2.1 and a 5520 controller configured for netflow. Solarwinds says it's getting zilch though. Should this be working?

                                              • Re: NTA wireless lan controller problem
                                                rschroeder

                                                I've never tried setting up NetFlow on a 5520, Jessica.  I DO have it running on a bunch of 5508's and a pair of 8540's, though, so I believe you'll be able to get it going.

                                                 

                                                Check out the folks at Solarwinds Support via telephone after confirming the process to set up your 5520's to send NetFlow data to NTA.  You may need a TAC case going to ensure you've done it correctly, or that the 5520's can do what you expect and need.

                                                 

                                                At worst, you should be able to use the 5520's or ASA's built-in Application Visibility and Control (if you HAVE ASA's isolating any of the controllers), or view the traffic to/from them via NetFlow data collected from routers or firewalls between them and your network, and between them and the Internet.

                                                2 of 2 people found this helpful
                                                  • Re: NTA wireless lan controller problem
                                                    JessicaWalsh

                                                    Thanks. I confirmed my  5508 is working, but not the 5520. I opened up a ticket with SW and we'll see where it goes.

                                                      • Re: NTA wireless lan controller problem
                                                        Ashley Heilbronn

                                                        Make sure your FUS (Field Update Software) which is a completely different package to the Wireless LAN Controller is at its most currently level.

                                                         

                                                        Netflow & AVC was added with version 1.9.0.0.

                                                         

                                                        Best practice is to have the FUS, Field recovery image and Emergence recovery image closely matched to the current WLC software version or higher.

                                                        you may find for older discontinued WLCs you may be locked to a specific FUS version.

                                                        updating the FUS requires a bit of down time as it reboot your WLC a number of times to update hardware components, and you may need console access to monitor the device during its upgrade process.

                                                         

                                                        here is what the factory images looks like applied to 2504, 5508 & 7500.

                                                         

                                                        (WLC-2504-01) >show sysinfo

                                                        Manufacturer's Name.............................. Cisco Systems Inc.

                                                        Product Name..................................... Cisco Controller

                                                        Bootloader Version............................... 1.0.16

                                                        Field Recovery Image Version..................... 1.0.0

                                                        Firmware Version................................. PIC 16.0

                                                         

                                                        (WLC-5508-01) >show sysinfo

                                                        Manufacturer's Name.............................. Cisco Systems Inc.

                                                        Product Name..................................... Cisco Controller

                                                        Bootloader Version............................... 1.0.1

                                                        Field Recovery Image Version..................... 6.0.182.0

                                                        Firmware Version................................. FPGA 1.3, Env 1.6, USB console 1.27

                                                         

                                                        (WLC-7500-01) >show sysinfo

                                                        Manufacturer's Name.............................. Cisco Systems Inc.

                                                        Product Name..................................... Cisco Controller

                                                        Bootloader Version............................... 7.0.240.0

                                                        Emergency Image Version.......................... 7.0.240.0

                                                      • Re: NTA wireless lan controller problem
                                                        miller2529

                                                        We have the 5508 and I have it showing information under solarwinds/wireless but nothing under the NETFLOW, I have setup the EXPORTER and MAPPER but didn't see how to setup the WLAN, the step(3) above doesn't match what I see. We are running software ver  8.3.102.0 and field version 7.6.101.1, what do you have to do to get it to show up in NETFLOW? Thanks..

                                            • Re: NTA wireless lan controller problem
                                              rschroeder

                                              You may need to talk with TAC if you don't find the procedure for your specific model & version of WLC.  Some thoughts:

                                               

                                              Check this link:

                                              https://thwack.solarwinds.com/message/237929#237929

                                               

                                              Also this one:  https://supportforums.cisco.com/discussion/12601281/resolved-wlc-software-relase-80-netflow-74-will-not-support-3rd-party-nms

                                               

                                               

                                               

                                              Configuring NetFlow (GUI)

                                               

                                               

                                              Step 1 Configure the Exporter by following these steps:

                                              a) Choose Wireless > Netflow > Exporter.

                                              b) Click New.

                                              c) Enter the Exporter name, IP address, and the port number.

                                              The valid range for the port number is from 1 to 65535.

                                              d) Click Apply.

                                              e) Click Save Configuration.

                                               

                                              Step 2 Configure the NetFlow Monitor by following these steps:

                                              a) Choose Wireless > Netflow > Monitor.

                                              b) Click New and enter the Monitor name.

                                              c) On the Monitor List page, click the Monitor name to open the Netflow Monitor > Edit page.

                                              d) Choose the Exporter name and the Record name from the respective drop-down lists.

                                              e) Click Apply.

                                              f) Click Save Configuration.

                                               

                                              Step 3 Associate a NetFlow Monitor to a WLAN by following these steps:

                                              a) Choose WLANs and click the WLAN ID to open the WLANs > Edit page.

                                              b) In the QoS tab, choose the NetFlow Monitor from the Netflow Monitor drop-down list.

                                              c) Click Apply.

                                              d) Click Save Configuration.

                                               

                                               

                                              Configuring NetFlow (CLI)

                                               

                                              • Create an Exporter by entering this command:
                                                config flow create exporter exporter-name ip-addr port-number
                                              • Create a NetFlow Monitor by entering this command:
                                                config flow create monitor monitor-name
                                              • Associate or dissociate a NetFlow Monitor with an Exporter by entering this command:
                                                config flow {add | delete} monitor monitor-name exporter exporter-name
                                              • Associate or dissociate a NetFlow Monitor with a Record by entering this command:
                                                config flow {add | delete} monitor monitor-name record ipv4_client_app_flow_record
                                              • Associate or dissociate a NetFlow Monitor with a WLAN by entering this command:
                                                config wlan flow wlan-id monitor monitor-name {enable | disable}
                                              • See a summary of NetFlow Monitors by entering this command:
                                                show flow monitor summary
                                              • See information about the Exporter by entering this command:
                                                show flow exporter {summary | statistics}
                                              • Configure a debug of NetFlow by entering this command:
                                                debug flow {detail | error | info} {enable | disable}
                                                • Re: NTA wireless lan controller problem
                                                  miller2529

                                                  Thanks, rschroeder, after relooking at it I found that I had to click on the WLAN ID and then it showed the screen to add the monitor from the drop down list.

                                                  nf1.JPG

                                                  This is a 5508 device under NETFLOW but it doesn't show any other information then what I would see under NPM. Under NPM it at least shows all the interface status, under NTA it doesn't even have an arrow to show the interface status. Is this correct for the NTA and the 5508? We are running NTA 4.2.2. If I do have it set right I don't see any additional information under NTA, I get more information from NPM.

                                                   

                                                  Thanks..