Добрый день!
Проблема с подсчетом трафика по Netflow, на устройстве (Cisco 857) показывается что экспорт есть, а на коллектор ничего не идет, вернее идет но ~1% от того что экпортируется.
Конфиг (не полный):!
ip cef
ip flow-cache timeout inactive 10
ip flow-cache timeout active 1
no ip domain lookup!
crypto pki trustpoint TP-self-signed-3448409617
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3448409617
revocation-check none
rsakeypair TP-self-signed-3448409617
!!
!
crypto isakmp policy 1
encr 3des
hash md5
authentication pre-share
group 2
crypto isakmp key xxxxxxxxxx
address x.x.x.x 255.255.255.248 no-xauth
!
!
crypto ipsec transform-set adsl_to_office esp-3des esp-md5-hmac
!
crypto map policy_adsl 1 ipsec-isakmp
description crypto_map_tikhvin_office
set peer x.x.x.x
set security-association lifetime seconds 57600
set transform-set adsl_to_office
set pfs group2
match address 100
!
!
!
interface ATM0
no ip address
ip flow ingress
ip flow egress
ip route-cache flow
no atm ilmi-keepalive
dsl operating-mode auto
!
interface ATM0.2 point-to-point
pvc 0/33
pppoe-client dial-pool-number 1
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$FW_INSIDE$
ip address 192.168.3.57 255.255.255.248
ip access-group 102 in
ip flow ingress
ip flow egress
ip route-cache flow
ip tcp adjust-mss 1412
!
interface Dialer0
description $FW_OUTSIDE$
ip address y.y.y.y 255.255.255.0
ip access-group 106 in
ip access-group 2002 out
ip mtu 1452
ip flow ingress
ip flow egress
encapsulation ppp
ip route-cache flow
ip tcp adjust-mss 1300
dialer pool 1
dialer-group 1
no cdp enablecrypto map policy_adsl
!
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0 permanent
ip flow-export source Vlan1
ip flow-export version 5
ip flow-export destination 192.168.242.19 9996
ip flow-top-talkers
top 50
sort-by bytes
cache-timeout 2
!
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 5 life 86400 requests 10000
!
ADSL_VPN_#sh ip flow export
Flow export v5 is enabled for main cache
Export source and destination details :
VRF ID : Default
Source(1) 192.168.3.57 (Vlan1)
Destination(1) 192.168.242.19 (9996)
Version 5 flow records
1989 flows exported in 175 udp datagrams
0 flows failed due to lack of export packet
2 export packets were sent up to process level
0 export packets were dropped due to no fib
0 export packets were dropped due to adjacency issues
0 export packets were dropped due to fragmentation failures
0 export packets were dropped due to encapsulation fixup failuresПодскажите, в чем может быть проблема, куда смотреть, какими дебагами?
no ip flow-top-talkers ?
>no ip flow-top-talkers ?без изменений,
заметил, что на коллектор приходит столько же пакетов, сколько указывается в строке "export packets were sent up to process level", что бы это значило?