[c-nsp] Best practices for Cat6500
Dobbins, Roland
rdobbins at arbor.net
Mon Nov 1 19:10:48 EDT 2010
On Nov 1, 2010, at 5:00 PM, Robert Hass wrote:
> Is any way to export NetFlow (v5 or v9) information for packets coming
> to RP/SP only ?
You can do ip route-cache flow on the RP, which will result in punted packets being converted into flows. In fact, this is the only aspect of 6500 NetFlow which is actually somewhat operationally useful, given the manifold caveats imposed by the hardware limitations of EARL7. Watch your CPU, though; you should work on constructing a) iACLs and later b) CoPP policies which protect the RP.
-----------------------------------------------------------------------
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>
Sell your computer and buy a guitar.
More information about the cisco-nsp
mailing list