[c-nsp] Newbie assistance about filtering netflow export (ascii clean)
Hank Nussbacher
hank at interall.co.il
Fri Mar 3 01:19:57 EST 2023
[something screwy happened to my plaintext. Hopefully this is better]
I hope someone here has done this.
On IOS-XR I want the ability to filter certain IP ranges when doing a
Netflow export.
I have looked here:
https://www.cisco.com/c/en/us/td/docs/routers/asr9000/software/asr9k-r6-5/netflow/configuration/guide/b-netflow-cg-asr9k-65x/b-netflow-cg-asr9k-65x_chapter_010.html#concept_B74CBEBA76D8461C9044B586AA873791
and see there is this:
ipv4 access-list nf_ex 10 permit ipv4 192.168.1.1/24 any capture
Is this the ACL that indicates which prefixes to export via Netflow and
all others are dropped?
This applies to both src and dst for this IP range listed? All other IP
ranges are dropped?
flow monitor-map fmm1 record ipv4 option filtered
Is "option filtered" the trick that is needed? Where can I read more
about this option?
interface 10GE0/0/0/1
ipv4 access-group nf_ex_ing
Where in the page was defined nf_ex_ing? I thought it was nf_ex.
The only Cisco doc I found that discusses "option filtered" is:
https://www.cisco.com/c/en/us/td/docs/routers/asr9000/software/asr9k-r6-5/netflow/configuration/guide/b-netflow-cg-asr9k-65x/b-netflow-cg-asr9k-65x_chapter_010.html
Any clue appreciated.
Thanks,
Hank
More information about the cisco-nsp
mailing list