Solved

Cisco ASA 5510 and NetFlow Analyzer

Posted on 2009-05-05
3
2,170 Views
Last Modified: 2013-11-16
Just downloaded a Trial Version of Solaris Orion with the Netflow Module Analyzer..  Is there a way i can monitor traffic that is going through my Ethernet0/0 outside interface of my ASA 5510 Cisco Firewall?
ciscoasa# show version
 
Cisco Adaptive Security Appliance Software Version 7.2(1)24
Device Manager Version 5.2(1)54
 
Compiled on Wed 18-Oct-06 15:46 by builders
System image file is "disk0:/asa721-24-k8.bin"
Config file at boot was "startup-config"
 
ciscoasa up 35 days 2 hours
 
Hardware:   ASA5510-K8, 256 MB RAM, CPU Pentium 4 Celeron 1600 MHz
Internal ATA Compact Flash, 256MB

Open in new window

0
Comment
Question by:maxalarie
3 Comments
 
LVL 32

Accepted Solution

by:
Kamran Arshad earned 250 total points
ID: 24311469
Hi,

I guess only the ASA 5580 support the netflow as it had the latest IOS version. You can check out the PAQ;

http://www.experts-exchange.com/Hardware/Networking_Hardware/Routers/Q_23179300.html

There is a workaround of using Nprobe;

www.ntop.org/nProbe.html 

0
 
LVL 10

Assisted Solution

by:ngravatt
ngravatt earned 250 total points
ID: 24316614
use this tool.  its free and works great.  

http://www.plixer.com/
0
 
LVL 1

Expert Comment

by:jakemichaelwilson
ID: 25194325
Thank you ngravatt.  
Scrutinizer is free and it support NetFlow from the Cisco ASA Firewall:
http://www.plixer.com/products/netflow-sflow/free-netflow-scrutinizer.php

Here is how to configure it:
http://www.plixer.com/blog/netflow/netflow-security-event-logging-with-the-cisco-asa/ 

Mike
0

Featured Post

Guide to Performance: Optimization & Monitoring

Nowadays, monitoring is a mixture of tools, systems, and codes—making it a very complex process. And with this complexity, comes variables for failure. Get DZone’s new Guide to Performance to learn how to proactively find these variables and solve them before a disruption occurs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question