Cisco IOS/Nexus 7000 NX-OS 비교 - Netflow 관련 명령어 -
| Cisco IOS CLI | Cisco NX-OS CLI |
|---|---|
| Enabling the NetFlow Feature |
| Cisco IOS Software does not have the ability to enable or disable NetFlow. | feature netflow |
|---|
| Configuring a Layer-3 NetFlow Flow Record (Custom) |
| Cisco IOS
Software does not have the ability to create custom layer-3 NetFlow records. A
system wide flow mask is defined. The following example uses
interface-full.
mls flow ip interface-full mls nde sender version 5 |
flow record
Netflow-Record-1
description Custom-Flow-Record match ipv4 source address match ipv4 destination address match transport destination-port collect counter bytes collect counter packets |
|---|
| Configuring a Layer-2 NetFlow Flow Record (Custom) |
| Cisco IOS Software does not have the ability to create custom layer-2 NetFlow records to capture MAC address information or reference it as a key field. | flow record
Netflow-Record-1
description Layer-2-Flow-Record match datalink mac source-address match datalink mac destination-address collect counter bytes collect counter packets |
|---|
| Configuring a NetFlow Flow Export |
| ip flow-export
source GigabitEthernet2/2
ip flow-export version 9 ip flow-export destination 192.168.11.2 2000 |
flow exporter
Netflow-Exporter-1
description Production-Netflow-Exporter destination 192.168.11.2 source Ethernet2/2 version 9 |
|---|
| Configuring a NetFlow Monitor with a Custom Record |
| Cisco IOS Software does not have the ability to create flow monitors that associate NetFlow records to NetFlow exporters. | flow monitor
Netflow-Monitor-1
description Applied Inbound-Eth-1/1 record Netflow-Record-1 exporter Netflow-Exporter-1 |
|---|
| Configuring a NetFlow Monitor with an Original Record |
| Cisco IOS Software does not have the ability to create flow monitors that associate NetFlow records to NetFlow exporters. | flow monitor
Netflow-Monitor-2
description Use Predefined “Original-Netflow-Record” record netflow-original exporter Netflow-Exporter-1 |
|---|
| Adjusting NetFlow Timers |
| mls aging
fast
mls aging long 120 mls aging normal 32 |
flow timeout active 120
flow timeout inactive 32 flow timeout fast 32 threshold 100 flow timeout session flow timeout aggressive threshold 75 |
|---|
| Configuring a NetFlow Sampler |
| mls sampling
packet-based 64 8000
mls flow int-full mls nde sender version 5 |
sampler NF-Sampler-1
description Sampler-for-high-traffic-environment mode 1 out-of 1000 |
|---|
| Applying a NetFlow Monitor to an Interface |
| interface
gigabitethernet 1/1
ip flow ingress |
interface ethernet 1/1
ip flow monitor Netflow-Monitor-1 input |
|---|
| Applying a NetFlow Monitor to a VLAN |
| ip flow ingress layer2-switched vlan 10 | vlan configuration 10
ip flow monitor Netflow-Monitor input |
|---|
| Applying a Layer-2 NetFlow Monitor an Interface |
| Cisco IOS Software does not have the ability to apply a layer-2 flow monitor to an interface and specify the input or output direction. Cisco IOS software uses a global command to specify the VLAN for which only ingress bridged-traffic is captured. See the previous example. | interface etherent 1/1
switchport switchport access vlan 100 mac packet-classify layer2-switched flow monitor Netflow-Monitor-L2 input |
|---|
| Applying a NetFlow Sampler to an Interface |
| interface
gigabitethernet1/1
mls netflow sampling |
interface ethernet 1/1
ip flow monitor Netflow-Monitor-1 input sampler NF-Sampler-1 |
|---|
| Applying a NetFlow Sampler to a VLAN |
| Cisco IOS Software does not have the ability to apply a sampler to a VLAN. | vlan configuration 10
ip flow monitor Netflow-Monitor-1 input sampler NF-Sampler-1 |
|---|---|
| Applying a Layer-2 NetFlow Sampler an Interface |
| Cisco IOS Software does not have the ability to apply a layer-2 sampler to an interface. | interface etherent 1/1
switchport switchport access vlan 100 mac packet-classify layer2-switched flow monitor Netflow-Monitor-L2 input sampler NF-Sampler-1 |
|---|
| Cisco NX-OS NetFlow | Cisco IOS Software NetFlow | Command Description |
|---|---|---|
| show flow exporter | show mls nde | Displays the configured exporter maps |
| show flow interface | - | Displays interfaces configured for NetFlow |
| show flow monitor | - | Displays information about monitor maps |
| show flow record | - | Displays information about record maps |
| show flow timeout | - | Displays the NetFlow timeout value |
| show hardware flow aging | show mls netflow aging | Displays the NetFlow table aging timeout value |
| show hardware flow entry | show mls netflow ip flow | Displays flow-specific information |
| show hardware flow ip | show mls netflow ip | Displays the IP NetFlow table |
| show hardware flow l2 | - | Displays the Layer-2 NetFlow table |
| show hardware flow sampler | show mls sampling | Displays the NetFlow sampling configuration |
| show hardware flow utilization module | show mls netflow table summary | Displays NetFlow table utilization per module |
| show sampler | show flow-sampler | Displays information about sampler maps |
