• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 340
  • Last Modified:

quick Netflow question

Is it best practice to enable netflow on internal or external interfaces.
Also, which direction?

We have a few remote sites connecting back to us via MPLS. I am monitoring their serial interfaces (in the ingress direction). Is this sufficient to analyze bandwidth utilization? Or should I montior egress too?

  • 2
1 Solution
Typically you enable Netflow on both the internal (LAN) and external (WAN) interfaces since it collects ingress.  You can enable egress collection on newer IOS but it does the same thing as collecting inbound on both the LAN and WAN interfaces.

So, either monitor ingress and egress on the serial or monitor ingress on the LAN and WAN interfaces.  When monitoring bandwidth, you should monitor both ingress and egress so you can monitor upload and download bandwidth utilization.
dissolvedAuthor Commented:
great, thanks
dissolvedAuthor Commented:
J, can you please look at this? I posted the config from our headend ASA. Can you tell me if there is anything in this config, which would cause the ASA to drop all VPN connections every hour or so?

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now