> > > Can I just configure the switch part with netflow, (not > > the router part) ? > > I assume you are in hybrid mode (catos/ios). > In this case: > set mls flow full > set mls nde 192.188.242.5 9991 > set mls nde enable > > You may use another commands: > "set mls bridged-flow-statistics" and "set mls agingtime" >
If you're not using a hybrid box, here is what I use on my native IOS 6500's: (these are all global config commands) mls aging fast threshold 1 mls aging long 300 mls flow ip full mls nde sender ip flow-export source Loopback0 ip flow-export version 5 origin-as ip flow-export destination 192.168.193.69 2077 I set long aging to 300 seconds so as to not have any flows last longer than five minutes - so I can do five minute analysis. I have had trouble quantifying the CPU impact of enabling netflow data export on 6500's. So far it has been minimal in my environment. This particular switch has about 93000 flows built across it at any one time and the CPU, even with NDE turned on never exceeds 10%. If you're wondering, I'm running 12.1(22)E1. _______________________________________________ Flow-tools mailing list [EMAIL PROTECTED] http://mailman.splintered.net/mailman/listinfo/flow-tools
