Step 1 |
configure terminal
Example:
Device# configure terminal
|
Enters global configuration mode.
|
Step 2 | flow
record
flow_record_name
Example:
Device(config)# flow record flow-record-1
|
Enters flow
record configuration mode.
|
Step 3 | description
description
Example:
Device(config-flow-record)# description flow-record-1
|
(Optional)
Creates a description for the flow record.
|
Step 4 | match
ipv4
version
Example:
Device (config-flow-record)# match ipv4 version
|
Specifies a
match to the IP version from the IPv4 header.
|
Step 5 | match
ipv4
protocol
Example:
Device (config-flow-record)# match ipv4 protocol
|
Specifies a
match to the IPv4 protocol.
|
Step 6 | match
application
name
Example:
Device (config-flow-record)# match application name
|
Specifies a
match to the application name.
Note
| This action
is mandatory for AVC support, as this allows the flow to be matched against the
application.
|
|
Step 7 | match connection client ipv4 address
Example:
Device (config-flow-record)# match connection client ipv4 address
|
Specifies a
match to the IPv4 address of the client (flow initiator).
|
Step 8 | match connection server ipv4 address
Example:
Device (config-flow-record)# match connection server ipv4 address
|
Specifies a
match to the IPv4 address of the server (flow responder).
|
Step 9 | match connection server transport port
Example:
Device (config-flow-record)# match connection server transport port
|
Specifies a
match to the transport port of the server.
|
Step 10 | match flow observation point
Example:
Device (config-flow-record)# match flow observation point
|
Specifies a
match to the observation point ID for flow observation metrics.
|
Step 11 | collect flow direction
Example:
Device (config-flow-record)# collect flow direction
|
Specifies to
collect the direction — Ingress or Egress — of the relevant side — Initiator or
Responder — of the bi-directional flow that is specified by the
initiator
keyword in the
collect connection
initiator command in the step below. Depending on the value
specified by the
initiator
keyword, the
flow
direction keyword takes the following values :
-
0x01 =
Ingress Flow
-
0x02 =
Egress Flow
When the
initiator
keyword is set to initiator, the flow direction is specified from the initiator
side of the flow. When the initiator keyword is set to responder, the flow
direction is specified from the responder side of the flow. For wired AVC, the
initiator
keyword is always set to initiator.
|
Step 12 | collect connection initiator
Example:
Device (config-flow-record)# collect connection initiator
|
Specifies to
collect the side of the flow — Initiator or Responder — relevant to the
direction of the flow specified by the
collect flow
direction command. The
initiator
keyword provides the following information about the direction of the flow :
For wired AVC, the
initiator
keyword is always set to initiator.
|
Step 13 | collect connection client counter packets long
Example:
Device (config-flow-record)# collect connection client counter packets long
|
Specifies to
collect the number of packets sent by the client.
|
Step 14 | collect connection client counter bytes network
long
Example:
Device (config-flow-record)# collect connection client counter bytes network long
|
Specifies to
collect the total number of bytes transmitted by the client.
|
Step 15 | collect connection server counter packets long
Example:
Device (config-flow-record)# collect connection server counter packets long
|
Specifies to
collect the number of packets sent by the server.
|
Step 16 | collect connection server counter bytes network
long
Example:
Device (config-flow-record)# collect connection server counter bytes network long
|
Specifies to
collect the total number of bytes transmitted by the server.
|
Step 17 | collect timestamp absolute first
Example:
Device (config-flow-record)# collect timestamp absolute first
|
Specifies to
collect the time, in milliseconds, when the first packet was seen in the flow.
|
Step 18 | collect timestamp absolute last
Example:
Device (config-flow-record)# collect timestamp absolute last
|
Specifies to
collect the time, in milliseconds, when the most recent packet was seen in the
flow.
|
Step 19 | collect connection new-connections
Example:
Device (config-flow-record)# collect connection new-connections
|
Specifies to
collect the number of connection initiations observed.
|
Step 20 | end
Example:Device(config)# end
| Returns to privileged EXEC mode. Alternatively, you can also press Ctrl-Z to exit global configuration mode.
|
Step 21 |
show flow
record
Example:
Device # show flow record
|
Displays
information about all the flow records.
|