netflow Cisco7604 utm5

Технические вопросы по UTM 5.0
Ответить
root_khj
Сообщения: 44
Зарегистрирован: Ср ноя 23, 2011 14:47

netflow Cisco7604 utm5

Сообщение root_khj »

Доброе время суток уважаемые админы.
У нас в наличии имеется cisco 7604 на нем иос c7600rsp72043-adventerprisek9-mz.151-2.S1 включили netflow на нем но входящий трафик не считается почему то а исходящий трафик отображается нормально при снятие отчета по трафику.

Вот конфиг cisco
Building configuration...

Current configuration : 20536 bytes
!
!
!
version 15.1
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime
service timestamps log datetime msec localtime
service password-encryption
service counters max age 10
!
hostname Cisco-7604
!
boot-start-marker
boot system disk1:c7600rsp72043-adventerprisek9-mz.151-2.S1.bin
boot-end-marker
!
!
logging buffered 16384
!
!
aaa new-model
!
!
aaa authentication login CISCO local
!
!
!
!
!
aaa session-id common
!
!
!
cef table consistency-check IPv4 error-message
no ip source-route
!
ip flow-egress input-interface
ip flow-cache timeout inactive 10
ip flow-cache timeout active 5
no ip domain lookup
!
!
!
!
!
vtp domain Cisco
vtp mode transparent
mls flow ip interface-full
no mls flow ipv6
mls qos
mls cef error action reset
mls cef maximum-routes ip 380
multilink bundle-name authenticated
!
!
!
!
!

spanning-tree mode pvst
spanning-tree extend system-id
diagnostic bootup level minimal
!
redundancy
main-cpu
auto-sync running-config
mode sso
!
!
!
vlan internal allocation policy ascending
vlan access-log ratelimit 2000
!
ip ssh logging events
ip ssh version 2
!
!
!
!
!
interface GigabitEthernet1/1
ip address 192.168.10.1 255.255.255.248
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
logging event link-status
no cdp enable
!
interface GigabitEthernet1/2
bandwidth 140000
ip address 192.168.10.17 255.255.255.248
no ip unreachables
no ip proxy-arp
ip flow ingress
logging event link-status
media-type rj45
no cdp enable
!
....
....
....

!
interface GigabitEthernet2/48
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
logging event link-status
shutdown
no cdp enable
!
interface Vlan1
no ip address
shutdown
!
!
ip forward-protocol nd
!
ip flow-export version 5
ip flow-export destination 192.168.30.25 9996
no ip http server
no ip http secure-server
ip route 0.0.0.0 0.0.0.0 192.168.10.1
!
!
!
!
control-plane
!
alias exec c conf t
!
line con 0
login authentication CISCO
line vty 0 4
password 7
login authentication CISCO
transport input ssh
!
!
end

cisco#sh ver
Cisco IOS Software, c7600rsp72043_rp Software (c7600rsp72043_rp-ADVENTERPRISEK9-

M), Version 15.1(2)S1, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2011 by Cisco Systems, Inc.
Compiled Thu 12-June-11 17:16 by prod_rel_team

ROM: System Bootstrap, Version 12.2(33r)SRD5, RELEASE SOFTWARE (fc1)
BOOTLDR: Cisco IOS Software, c7600rsp72043_rp Software (c7600rsp72043_rp-ADVENTE

RPRISEK9-M), Version 15.1(2)S1, RELEASE SOFTWARE (fc1)

Cisco-7604 uptime is 10 weeks, 4 day, 1 hours, 48 minutes
Uptime for this control processor is 10 weeks, 4 day, 1 hours, 48 minutes
System returned to ROM by reload (SP by reload)
System restarted at 11:22:00 UTC Sun Sep 22 2011
System image file is "disk1:c7600rsp72043-adventerprisek9-mz.151-2.S1.bin"
Last reload type: Normal Reload


This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

Cisco CISCO7604 (M8500) processor (revision 2.0) with 1900544K/131072K bytes of

memory.
Processor board ID FOX1451GK2R
BASEBOARD: RSP720
CPU: MPC8548_E, Version: 2.1, (0x80390021)
CORE: E500, Version: 2.2, (0x80210022)
CPU:1200MHz, CCB:400MHz, DDR:200MHz,
L1: D-cache 32 kB enabled
I-cache 32 kB enabled

Last reset from power-on
1 Virtual Ethernet interface
50 Gigabit Ethernet interfaces
3964K bytes of non-volatile configuration memory.

507024K bytes of Internal ATA PCMCIA card (Sector size 512 bytes).
Configuration register is 0x2102

В чем я ошибся? Как включить сбор netflow на этой железке?

Заранее благодарю за помощь.

Ответить