quick Netflow question

Is it best practice to enable netflow on internal or external interfaces.
Also, which direction?

We have a few remote sites connecting back to us via MPLS. I am monitoring their serial interfaces (in the ingress direction). Is this sufficient to analyze bandwidth utilization? Or should I montior egress too?

thanks
dissolvedAsked:
Who is Participating?
 
JFrederick29Connect With a Mentor Commented:
Typically you enable Netflow on both the internal (LAN) and external (WAN) interfaces since it collects ingress.  You can enable egress collection on newer IOS but it does the same thing as collecting inbound on both the LAN and WAN interfaces.

So, either monitor ingress and egress on the serial or monitor ingress on the LAN and WAN interfaces.  When monitoring bandwidth, you should monitor both ingress and egress so you can monitor upload and download bandwidth utilization.
0
 
dissolvedAuthor Commented:
great, thanks
0
 
dissolvedAuthor Commented:
J, can you please look at this? I posted the config from our headend ASA. Can you tell me if there is anything in this config, which would cause the ASA to drop all VPN connections every hour or so?

http://www.experts-exchange.com/Security/Software_Firewalls/Enterprise_Firewalls/Cisco_PIX_Firewall/Q_24378722.html
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.