We help IT Professionals succeed at work.

Monitoring which traffic passes through a Router

Hi, we are preparing the rules for Zone-based Policy Firewall on Router c3925, however we need to confirm which traffic usually pass through a router, so that the rule will not block/allow any useful/bad traffic. So can we have a method to see it?

Is there a way other than: "show ip cache flow", "sh ip traffic" ?  

Many thanks in advance,
Comment
Watch Question

Natty GregIn Theory (IT)
CERTIFIED EXPERT
Commented:
You can also use Netbar and Netflow just make sure your firmware supports it
Network Engineer / Presales Engineer
Commented:
NBAR and NetFlow are the right tools if you are to monitor traffic up to Layer 7.

Network Based Application Recognition Performance Analysis

http://www.cisco.com/en/US/products/ps6616/products_white_paper0900aecd8031b712.shtml

NBAR Q&A

http://www.cisco.com/en/US/products/ps6616/products_qanda_item09186a00800a3ded.shtml



Cisco CNS NetFlow Collection Engine

http://www.cisco.com/en/US/products/sw/netmgtsw/ps1964/products_data_sheet09186a00801e4ebb.html
Joey YungSenior Network Engineer
CERTIFIED EXPERT
Commented:
As other guys said, Netflow is the most common method to address for the requirement now a day. Other than Netflow, I will use "IP accounting" several years before.

Explore More ContentExplore courses, solutions, and other research materials related to this topic.