![]() ![]() You can define a flow record with any combination of keys and fields of interest. It can maintain hundreds of thousands of flows without losing anyįlows and periodically exports them to an external collector.Ī flow record defines the keys that NetFlow uses to identify packets and other fields of interest that NetFlow gathers for The second layer enables the gathering of flows at scale. Instead, the packets can be processed and aggregated at line rate. ![]() Packets do not need to be sampled and statisticallyĪnalyzed. The first layer supports per-packet visibility for line-rate traffic. Unlike other Cisco Nexus platforms, Cisco Nexus 9000 Series switches separate NetFlow processing into two layers: The flow monitor combines the flow record andįlow exporter with the NetFlow cache information.Ĭisco NX-OS can gather NetFlow statistics and analyze all packets on the interface or subinterface. The flow record determines the size of the data to be collected for a flow. ![]() Cisco NX-OS exports a flow as part of a NetFlow export User Datagram Protocol (UDP)ĭatagram under the following circumstances:įlows are exported periodically as per the flow timeout value, which defaults to 10 seconds if not configured. You can export the data that NetFlow gathers for your flow by using a flow exporter and export this data to a remote NetFlowĬollector, such as Cisco Stealthwatch. On the export record version that you configure. A flow might gather other fields of interest, depending NetFlow allows you to define an optimal flow record for a particular application by selecting the keys from a large collectionĪll key values must match for the packet to count in a given flow. You create a flow using a flow record to define the unique keys for your flow.Ĭisco NX-OS supports the flexible NetFlow feature that enables enhanced network anomalies and security detection. Stream of packets that arrives on a source interface (or VLAN) and has the same values for the keys. NetFlow uses flows to provide statistics for accounting, network monitoring, and network planning. Require any change to either the packets themselves or to any networking device. NetFlow identifies packet flows for ingress IP packets and provides statistics based on these packet flows. This chapter describes how to configure the NetFlow feature on Cisco NX-OS devices. ![]()
0 Comments
Leave a Reply. |