Solved

Cisco ASA 5510 and NetFlow Analyzer

Posted on 2009-05-05
3
2,140 Views
Last Modified: 2013-11-16
Just downloaded a Trial Version of Solaris Orion with the Netflow Module Analyzer..  Is there a way i can monitor traffic that is going through my Ethernet0/0 outside interface of my ASA 5510 Cisco Firewall?
ciscoasa# show version

 

Cisco Adaptive Security Appliance Software Version 7.2(1)24

Device Manager Version 5.2(1)54

 

Compiled on Wed 18-Oct-06 15:46 by builders

System image file is "disk0:/asa721-24-k8.bin"

Config file at boot was "startup-config"

 

ciscoasa up 35 days 2 hours

 

Hardware:   ASA5510-K8, 256 MB RAM, CPU Pentium 4 Celeron 1600 MHz

Internal ATA Compact Flash, 256MB

Open in new window

0
Comment
Question by:maxalarie
3 Comments
 
LVL 32

Accepted Solution

by:
Kamran Arshad earned 250 total points
Comment Utility
Hi,

I guess only the ASA 5580 support the netflow as it had the latest IOS version. You can check out the PAQ;

http://www.experts-exchange.com/Hardware/Networking_Hardware/Routers/Q_23179300.html

There is a workaround of using Nprobe;

www.ntop.org/nProbe.html

0
 
LVL 10

Assisted Solution

by:ngravatt
ngravatt earned 250 total points
Comment Utility
use this tool.  its free and works great.  

http://www.plixer.com/
0
 
LVL 1

Expert Comment

by:jakemichaelwilson
Comment Utility
Thank you ngravatt.  
Scrutinizer is free and it support NetFlow from the Cisco ASA Firewall:
http://www.plixer.com/products/netflow-sflow/free-netflow-scrutinizer.php

Here is how to configure it:
http://www.plixer.com/blog/netflow/netflow-security-event-logging-with-the-cisco-asa/

Mike
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Suggested Solutions

Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

6 Experts available now in Live!

Get 1:1 Help Now