sthubert
asked on
Netflow of similar without replacing our routers.
Hello,
Perhaps someone can help me find a device that would suite our needs? We currently have Cisco 3750 switches at each of our sites that are connected to an MPLS network. Some of the sites have very low speed links and are often saturated. We wanted to setup NETFLOW on the ports in question so we can easily see where the traffic is coming from but the Cisco 3750 switches do not support it. Instead of replacing all our switches, we'd like to see if there is some sort of IN-LINE appliance or solution so that we can keep everything as is and just add something within the path of our router and MPLS. Thanks.
Perhaps someone can help me find a device that would suite our needs? We currently have Cisco 3750 switches at each of our sites that are connected to an MPLS network. Some of the sites have very low speed links and are often saturated. We wanted to setup NETFLOW on the ports in question so we can easily see where the traffic is coming from but the Cisco 3750 switches do not support it. Instead of replacing all our switches, we'd like to see if there is some sort of IN-LINE appliance or solution so that we can keep everything as is and just add something within the path of our router and MPLS. Thanks.
rauenpc
Although this isn't inline, PRTG is an application that does all sorts of network monitoring - Netflow, sFlow, SNMP, WMI, etc. It also has the ability to do packet sniffing and reporting based on the sniff. If you were to setup the WAN-facing port on the 3750 as a span source, and the PRTG server as a destination, you would be able to get detailed reports on that info. Performance and historical data will be based on the speed of the machine you configure this on and the disk space available. I believe you can get a free version that allows up to 10 sensors, so you might be able to accomplish this particular task for free, aside from the machine it runs on.
ASKER
Would I simply be able to plug this appliance in the WAN VLAN and capture the data the same way a WireShark would? Does it provide good reporting and top talkers based on bandwidth?
ASKER
Or perhaps I would setup a port mirror and plug the mirrored port into the appliance?
...
conf t
monitor session 1 source interface Gigabit 1/0/x
monitor session 1 destination interface Gigabit 1/0/x
...
conf t
monitor session 1 source interface Gigabit 1/0/x
monitor session 1 destination interface Gigabit 1/0/x
With PRTG, this would be a port mirror. PRTG won't pass traffic through two interfaces, so inline plainly isn't an option. Give it a shot for free, you just need a machine to load it on, and the port mirror to be setup.
http://www.paessler.com/prtg/?source=adwords&campaign=prtg_search_campaign_us&adgroup=prtg_network_monitor&adnum=011&gclid=CL38jYapvLoCFfA7Mgodbw0AsA
http://www.paessler.com/prtg/?source=adwords&campaign=prtg_search_campaign_us&adgroup=prtg_network_monitor&adnum=011&gclid=CL38jYapvLoCFfA7Mgodbw0AsA
ASKER
I just installed PRTG but like I mentioned my Cisco Routers do not support NETFLOW so how do I use PRTG to capture network data?
I'm really looking for a software or device that can either use to create NETFLOW's or to capture and analyze network data.
I'm really looking for a software or device that can either use to create NETFLOW's or to capture and analyze network data.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
WOW! Works like a charm! Thanks very much for your HELP I will easily be able to deploy this today!
ASKER
Great solution