Answer the question
In order to leave comments, you need to log in
V
V
Vladislav Ross2011-02-28 17:44:00
Vladislav Ross, 2011-02-28 17:44:00
NetFlow with Cisco ASA on FreeBSD
I want to record user traffic.
Enabled NetFlow on the Cisco ASA 5510 8.2(3), told it to forward information to the FreeBSD 8.0 server.
But there are problems with the software for FreeBSD:
flow-tools does not work at all, apparently does not support NetFlow v9.
flowd - does not store data on the number of bytes transferred and packets. The rest is OK.
nfcapd - incorrectly saves the date and time, the number of bytes transferred, for example, in 5 minutes I counted:
Summary: total flows: 24286, total bytes: 63.7 G, total packets: 1.5 T, avg bps: 499.8 G, avg pps: 1.5 T, avg bpp: 0
Writes the date instead of 28.02 - 09.02.
Googling didn't turn up anything.
Has anyone done something similar? Please provide a working configuration.
2 answer(s)
@amario
@gag_fenix
A
amario, 2011-02-28 @amario
somewhere recently I met the info that aces have very netflow cheese. He at all have ace recently appeared.
check with another device or flow generator.
but as for flow-tools, I didn’t exactly support the 9th version before, I won’t say now
V
Vladislav Ross, 2011-04-07 @gag_fenix
I figured it out eventually.
The only working solution I found is patched nfdump-1.5.8-NSEL .
Similar questions
A
Astlos1452019-08-22 13:11:18
How to block downloading files and displaying images in PfSense?
1Reply
K
A
S
U
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question