<div>
Perhaps you are seeing the network management system poll/monitor the device/interface.<br />
You can easily check this with netflow data directly on the router. <br />
<br />
enable netflow or add acls to capture the traffic<br />
<br />
show ip cache flow - will display traffic flowing through the router <br />
<br />
<br />
harbor235 ;}
</div>


Perhaps you are seeing the network management system poll/monitor the device/interface.
You can easily check this with netflow data directly on the router.

enable netflow or add acls to capture the traffic

show ip cache flow - will display traffic flowing through the router


harbor235 ;}

<div>
Yes.. that is the issue.. why are we not able to see much data through the virtual tunnel int that we configured for the<br />
IPSEC? <br />
<br />
One small question: How do we enable netflow on the router? I have not done that before. Do we have to have netflow tool? <br />
<br />
Thanks
</div>


Yes.. that is the issue.. why are we not able to see much data through the virtual tunnel int that we configured for the
IPSEC?

One small question: How do we enable netflow on the router? I have not done that before. Do we have to have netflow tool?

Thanks

<div>
Do you see statistics on the tunnel interface if you use the &quot;show interface ...&quot; command?
</div>


Do you see statistics on the tunnel interface if you use the "show interface ..." command?

<div>
Yes.. I see the stats on both sh int commands.. (Tunnel as well as Fa0/0)
</div>


Yes.. I see the stats on both sh int commands.. (Tunnel as well as Fa0/0)

<div>
<div class="content wysiwyg-content">
Hi ;<br />
We have an internet connection connecting the site to Data center. We are doing SNMP polling on the Tunnel interface of cisco router and are getting the capacity close to zero, but when the physical interface (Fa0/0) is monitored the traffic reading goes up substantially. Can anyone please explain why it is happening?
</div>
</div>


Hi ;
We have an internet connection connecting the site to Data center. We are doing SNMP polling on the Tunnel interface of cisco router and are getting the capacity close to zero, but when the physical interface (Fa0/0) is monitored the traffic reading goes up substantially. Can anyone please explain why it is happening?

Traffic monitoring on Tunnel

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.

Routers

Internet Protocol Security (IPsec) is a protocol suite for secure Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a communication session. IPsec includes protocols for establishing mutual authentication between agents at the beginning of the session and negotiation of cryptographic keys to be used during the session. IPsec can be used in protecting data flows between a pair of hosts (host-to-host), between a pair of security gateways (network-to-network), or between a security gateway and a host (network-to-host). IPsec is an end-to-end security scheme operating in the Internet Layer of the Internet Protocol Suite.