Cisco Catalyst 3850 Series Configuration Manual
  1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Switch
  5. Catalyst 3850 series
  6. Configuration manual

Cisco Catalyst 3850 Series Configuration Manual

Cisco flexible netflow configuration guide, cisco ios xe release 3se (catalyst 3850 switches)
Hide thumbs Also See for Catalyst 3850 Series:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Configuration Manual
Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release
3SE (Catalyst 3850 Switches)
First Published: January 29, 2013
Americas Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
http://www.cisco.com
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 527-0883
Text Part Number: OL-28354-01

Advertisement

Table of Contents
loading

Related Manuals for Cisco Catalyst 3850 Series

Summary of Contents for Cisco Catalyst 3850 Series

  • Page 1 Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) First Published: January 29, 2013 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883...
  • Page 2 HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. http:// Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks .

  • Page 3: Table Of Contents

    Accessing the CLI on a Switch Stack Accessing the CLI through a Console Connection or through Telnet Configuring Flexible NetFlow C H A P T E R 2 Finding Feature Information Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 4 Example: Configuring IPv6 and Transport Flag Flexible NetFlow in WLAN (Egress Direction) Example: Configuring IPv6 Flexible NetFlow in WLAN (Both Ingress and Egress Directions) Additional References Feature Information for Flexible NetFlow Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 5: Document Conventions

    A vertical line, called a pipe, indicates a choice within a set of keywords or arguments. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 6 Means the described action saves time. You can save time by performing the action described in the Timesaver paragraph. Warning Means reader be warned. In this situation, you might perform an action that could result in bodily injury. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 7: Related Documentation

    Obtaining Documentation and Submitting a Service Request For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at: http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html...
  • Page 8 Preface Obtaining Documentation and Submitting a Service Request Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) viii OL-28354-01...

  • Page 9: Chapter

    How to Use the CLI to Configure Features, page 5 Information About Using the Command-Line Interface This section describes the Cisco IOS command-line interface (CLI) and how to use it to configure your switch. Command Modes The Cisco IOS user interface is divided into many different modes. The commands available to you depend on which mode you are currently in.
  • Page 10 (with a Ethernet ports. To return to specific interface). privileged EXEC mode, press Ctrl-Z or enter end. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 11: Using The Help System

    Obtains a list of commands that begin with a particular character string. Example: Switch# di? dir disable disconnect Step 3 abbreviated-command-entry <Tab> Completes a partial command name. Example: Switch# sh conf<tab> Switch# show configuration Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 12: Understanding Abbreviated Commands

    CLI Error Messages This table lists some error messages that you might encounter while using the CLI to configure your switch. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 13: Configuration Logging

    The software provides a history or record of commands that you have entered. The command history feature is particularly useful for recalling long or complex commands or entries, including access lists. You can customize this feature to suit your needs. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 14: Changing The Command History Buffer Size

    Ctrl-P or use the up arrow key Recalls commands in the history buffer, beginning with the most recent command. Repeat the key sequence to recall successively older commands. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 15: Disabling The Command History Feature

    Although enhanced editing mode is automatically enabled, you can disable it, reenable it, or configure a specific line to have enhanced editing. These procedures are optional. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 16: Editing Commands Through Keystrokes

    Editing Commands through Keystrokes The keystrokes help you to edit the command lines. These keystrokes are optional. Note The arrow keys function only on ANSI-compatible terminals such as VT100s. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 17 Transposes the character to the left of the cursor with the character located at the cursor. Step 8 Ctrl-Y Recalls the most recent entry in the buffer. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 18: Editing Command Lines That Wrap

    To scroll back to the beginning of the command entry, press Ctrl-B or the left arrow key repeatedly. You can also press Ctrl-A to immediately move to the beginning of the line. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 19: Searching And Filtering Output Of Show And More Commands

    You can search and filter the output for show and more commands. This is useful when you need to sort through large amounts of output or if you want to exclude output that you do not need to see. Using these commands is optional. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 20: Accessing The Cli On A Switch Stack

    If your switch is already configured, you can access the CLI through a local console connection or through a remote Telnet session, but your switch must first be configured for this type of access. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 21 After you connect through the console port, through the Ethernet management port, through a Telnet session or through an SSH session, the user EXEC prompt appears on the management station. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 22 Using the Command-Line Interface Accessing the CLI on a Switch Stack Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 23: Prerequisites For Flexible Netflow

    Use Cisco Feature Navigator to find information about platform support and Cisco software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.

  • Page 24: Prerequisites For Wireless Flexible Netflow

    Prerequisites for Wireless Flexible NetFlow The following are the prerequisites for wireless Flexible NetFlow: • Ensure that the networking device is running a Cisco release that supports wireless Flexible NetFlow. • Ensure that the target is connected to a WLAN.

  • Page 25: Information About Flexible Netflow

    Supported Flexible NetFlow Fields, on page Information About Flexible NetFlow NetFlow is a Cisco technology that provides statistics on packets flowing through the switch. NetFlow is the standard for acquiring IP operational data from IP networks. NetFlow provides data to enable network and security monitoring, network planning, traffic analysis, and IP accounting.

  • Page 26: Wireless Flexible Netflow Overview

    To narrow this window, an idle timeout period can be defined. However, in the case of TCP, if two FIN bits or an RST is detected, the ACL entry can be removed. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 27: Flow Records

    Flexible NetFlow Match Parameters The following table describes Flexible NetFlow match parameters. You must configure at least one of the following match parameters for the flow records. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 28 • tos—Matches to the IPv4 Type of Service fields. • ttl—Matches to the IPv4 Time To Live fields. • version—Matches to the IP version from the IPv4 header. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 29: Flexible Netflow Collect Parameters

    {first | last} Collects the fields for the absolute time the first packet was seen or the absolute time the most recent packet was last seen (in milliseconds). Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 30: Exporters

    Exits from the flow exporter configuration mode. export-protocol Export protocol version. Negates the command or its default. option Selects option for exporting. source Originating interface for the net flow. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 31: Export Formats

    0. • If you apply a flow monitor in the output direction: ◦ Use the match keyword and use the output interface as a key field. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 32: Samplers

    • Use the collect keyword and use the output interface as a collect field. This field will be present in the exported records but with a value of 0. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 33 — — — Supported VLAN only for a output switch port. dot1q Supported priority only for a switch port. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 34 — — — — address IPv4 — — — — destination address ICMP IPv4 — — — — type ICMP IPv4 — — — — code Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 35 — Same as IP hop-limit TTL. ICMP IPv6 — — — — type ICMP IPv6 — — — — code source-port — — dest-port — — Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 36: Default Settings

    The following table lists the Flexible NetFlow default settings for the switch. Table 6: Default Flexible NetFlow Settings Setting Default Flow active timeout 1800 seconds Flow timeout inactive Enabled, 15 seconds Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 37: How To Configure Flexible Netflow

    Enters the global configuration mode. Example: Switch# configure terminal Step 2 flow record name Creates a flow record and enters flow record configuration mode. Example: Switch(config)# flow record test Switch(config-flow-record)# Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 38 Example: Switch# copy running-config startup-config What to Do Next Define an optional flow exporter by specifying the export format, protocol, destination, and other parameters. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 39: Creating A Flow Exporter

    Example: Switch(config)# flow exporter ExportTest Switch (config-flow-exporter)# Step 3 description string (Optional) Describes this flow record as a maximum 63-character string. Example: Switch(config-flow-exporter)# description ExportV9 Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 40 Switch(config-flow-exporter)# transport udp Step 8 Returns to privileged EXEC mode. Example: Switch(config-flow-record)# Step 9 show flow exporter [name record-name] (Optional) Displays information about NetFlow flow exporters. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 41: Creating A Flow Monitor

    5. record name 6. cache { timeout {active | inactive} seconds | type normal } 7. end 8. show flow monitor [name record-name] 9. copy running-config startup-config Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 42 { timeout {active | inactive} seconds | type normal Associates a flow cache with the specified flow monitor. Example: Switch(config-flow-monitor)# cache timeout active 15000 Step 7 Returns to privileged EXEC mode. Example: Switch(config-flow-monitor)# Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 43: Creating A Sampler

    You can create a sampler to define the NetFlow sampling rate for a flow. SUMMARY STEPS 1. configure terminal 2. sampler name 3. description string 4. mode {random} 5. end 6. show sampler [name] 7. copy running-config startup-config Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 44 (Optional) Saves your entries in the configuration file. Example: Switch# copy running-config startup-config What to Do Next Apply the flow monitor to a source interface, subinterface, VLAN interface, or a VLAN. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 45: Applying A Flow To An Interface

    Enters interface configuration mode and configures an interface. Command parameters for the interface configuration include: Example: • Auto— Auto-Template interface Switch(config)# interface • Capwap—CAPWAP tunnel interface GigabitEthernet1/0/1 Switch(config-if)# • GigabitEthernet—GigabitEthernet IEEE 802 Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 46: Configuring A Bridged Netflow On A Vlan

    (Optional) Saves your entries in the configuration file. Example: Switch# copy running-config startup-config Configuring a Bridged NetFlow on a VLAN You can apply a flow monitor and an optional sampler to a VLAN. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 47: Configuring Layer 2 Netflow

    Configuring Layer 2 NetFlow You can define Layer 2 keys in Flexible NetFlow records that you can use to capture flows in Layer 2 interfaces. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 48 Example: Switch# show flow record Step 6 copy running-config startup-config (Optional) Saves your entries in the configuration file. Example: Switch# copy running-config startup-config Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 49: Configuring Wlan To Apply Flow Monitor In Data Link Input/Output Direction

    Step 4 Returns to privileged EXEC mode. Example: Switch (config) # end Step 5 show wlan wlan-name (Optional) Verifies your configuration. Example: Switch # show wlan mywlan Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 50: Configuring Wlan To Apply Flow Monitor In Ipv4 And Ipv6 Input/Output Direction

    Switch (config) # end Step 5 show wlan wlan-name (Optional) Verifies your configuration. Example: Switch # show wlan mywlan Related Topics Wireless Flexible NetFlow Overview, on page 18 Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 51: Monitoring Flexible Netflow

    This example shows how to create a flow and apply it to an interface: Switch# configure terminal Enter configuration commands, one per line. End with CNTL/Z. Switch(config)# flow export export1 Switch(config-flow-exporter)# destination 10.0.101.254 Switch(config-flow-exporter)# transport udp 2055 Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 52: Example: Configuring Ipv4 Flexible Netflow In Wlan (Ingress Direction)

    Switch# show flow monitor fm_v4 cache Related Topics Configuring WLAN to Apply Flow Monitor in IPV4 and IPv6 Input/Output Direction, on page 42 Wireless Flexible NetFlow Overview, on page 18 Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 53: Example: Configuring Ipv6 And Transport Flag Flexible Netflow In Wlan

    Switch (config-flow-record)# match ipv6 hop-limit Switch (config-flow-record)# match ipv6 protocol Switch (config-flow-record)# match ipv6 traffic class Switch (config-flow-record)# match ipv6 version Switch (config-flow-record)# collect counter packets long Switch (config-flow-record)# exit Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 54: Additional References

    All supported MIBs for this release. To locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at the following URL: http://www.cisco.com/go/mibs Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...

  • Page 55: Feature Information For Flexible Netflow

    Feature Name Releases Feature Information Flexible NetFlow feature support Cisco IOS XE 3.2SE Flexible NetFlow uses flows to provide statistics for accounting, network monitoring, and network planning. Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 56 Configuring Flexible NetFlow Feature Information for Flexible NetFlow Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01...
  • Page 57 24, 35 flow record 19, 29 Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) OL-28354-01 IN-1...
  • Page 58 Index Cisco Flexible NetFlow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches) IN-2 OL-28354-01...

Table of Contents