Home | Skip to Content | Skip to Search | Skip to Navigation | Skip to Footer |
Worldwide [change] |Register |About Cisco
Guest

Hierarchical Navigation

Cisco IOS Software Releases 12.3 Mainline

NetFlow BGP Next Hop Support

Downloads

Table Of Contents

NetFlow BGP Next Hop Support

Contents

Prerequisites for NetFlow BGP Next Hop Support

Restrictions for NetFlow BGP Next Hop Support

Information About NetFlow BGP Next Hop Support

Aggregation

How to Configure NetFlow BGP Next Hop Support

Configuring NetFlow BGP Next Hop Accounting

Verifying the Configuration

Troubleshooting Tips

Configuration Examples for NetFlow BGP Next Hop Support

Configuring NetFlow BGP Next Hop Accounting: Example

Verifying the NetFlow BGP Next Hop Configuration: Example

Additional References

Related Documents

Standards

MIBs

RFCs

Technical Assistance

Command Reference

ip flow-aggregation cache

ip flow-export

show ip cache flow aggregation

show ip cache verbose flow

Glossary


NetFlow BGP Next Hop Support

The NetFlow Border Gateway Protocol (BGP) Next Hop Support feature lets you measure network traffic on a per BGP next hop basis. Without the NetFlow BGP Next Hop Support feature, NetFlow exports only IP next hop information (which provides only the next router); this feature adds BGP next hop information to the data export.

The NetFlow BGP Next Hop Support feature lets you track which service provider the traffic is going through. This functionality is useful if you have arrangements with several other service providers for fault-protected delivery of traffic. The feature lets you charge customers more per packet when traffic has a more costly destination—you can pass on some of the cost associated with expensive trans-oceanic links or charge more when traffic is sent to another ISP with which you have an expensive charge agreement.

This feature uses only the NetFlow Version 9 export format for its data export.

History for NetFlow BGP Next Hop Support

Release
Modification

12.3(1)

This feature was introduced.

12.2(18)S

This feature was integrated into Cisco IOS Release 12.2(18)S.

12.0(26)S

This feature was integrated into Cisco IOS Release 12.0(26)S.

12.2(27)SBC

This feature was integrated into Cisco IOS Release 12.2(27)SBC.


Finding Support Information for Platforms and Cisco IOS Software Images

Use Cisco Feature Navigator to find information about platform support and Cisco IOS software image support. Access Cisco Feature Navigator at http://www.cisco.com/go/fn. You must have an account on Cisco.com. If you do not have an account or have forgotten your username or password, click Cancel at the login dialog box and follow the instructions that appear.

Contents

This document includes the following sections:

Prerequisites for NetFlow BGP Next Hop Support

Restrictions for NetFlow BGP Next Hop Support

Information About NetFlow BGP Next Hop Support

How to Configure NetFlow BGP Next Hop Support

Configuration Examples for NetFlow BGP Next Hop Support

Additional References

Command Reference

Glossary

Prerequisites for NetFlow BGP Next Hop Support

Before you can configure the NetFlow BGP Next Hop Support feature, you must configure

NetFlow v9 (Version 9) data export (if only Version 5 is configured, then BGP next hop data is visible in the caches, but is not exported)

Cisco Express Forwarding (CEF) switching or dCEF switching (fast switching is not supported)

Border Gateway Protocol (BGP)

Restrictions for NetFlow BGP Next Hop Support

Recursive Load Sharing

The NetFlow cache does not capture the BGP next hop when the route to that BGP next hop is recursively load-shared via several IGP links. Instead, the NetFlow cache captures (as the BGP next hop) the effective simple next hop from a random selection of one of the load-shared routes to which the BGP route recurses.

Memory Impact

For BGP-controlled routes, the NetFlow BGP Next Hop Support feature adds 16 bytes to each NetFlow flow record. This increases memory requirements by 16 bytes times the number of flow cache entries that have BGP-controlled prefixes.

Performance Impact

Because the BGP next hop is fetched from the CEF path only once per flow, the performance impact of the NetFlow BGP Next Hop Support feature is minimal.

Information About NetFlow BGP Next Hop Support

To configure the NetFlow BGP Next Hop Support feature, you must understand the following concept:

Aggregation

Aggregation

The Cisco IOS NetFlow Aggregation feature summarizes NetFlow export data on a router before the data is exported to the NetFlow Collection Engine (formerly called NetFlow FlowCollector). The NetFlow BGP Next Hop Support feature provides the BGP next hop and its related aggregation scheme and provides BGP next hop information within each NetFlow record.

How to Configure NetFlow BGP Next Hop Support

See the following sections for configuration tasks for the NetFlow BGP Next Hop Support feature. Each task in the list is identified as either required or optional.

Configuring NetFlow BGP Next Hop Accounting (required)

Verifying the Configuration (optional)

Troubleshooting Tips (optional)

Configuring NetFlow BGP Next Hop Accounting

This section shows how to configure NetFlow BGP next hop accounting for the main cache and aggregation caches. You can enable the export of origin AS information or peer AS information, but not both.

SUMMARY STEPS

1. enable

2. configure terminal

3. ip flow-export Version 9 [origin-as | peer-as] bgp-nexthop

4. ip flow-aggregation cache bgp-nexthop-tos

5. enabled

6. end

DETAILED STEPS

 
Command
Purpose

Step 1 

enable

Example:

Router> enable

Enters privileged EXEC mode.

Enter your password if prompted.

Step 2 

configure terminal

Example:

Router# configure terminal

Enters global configuration mode.

Step 3 

ip flow-export Version 9 [origin-as | peer-as] bgp-nexthop

Example:

Router(config)# ip flow-export Version 9 origin-as bgp-nexthop

Enables the export of origin AS or peer AS information as well as BGP next hop information from the NetFlow main cache.

Caution Entering this command on a Cisco 12000 series Internet Router causes packet forwarding to stop for a few seconds while NetFlow reloads the route processor and line card CEF tables. To avoid interruption of service to a live network, apply this command during a change window, or include it in the startup-config file to be executed during a router reboot.

Step 4 

ip flow-aggregation cache bgp-nexthop-tos

Example:

Router(config)# ip flow-aggregation cache bgp-nexthop-tos

(Optional) Specifies the BGP next hop ToS aggregation cache scheme and enables aggregation cache configuration mode.

Step 5 

enabled

Example:

Router(config-flow-cache)# enabled

Enables the aggregation cache.

Step 6 

end

Example:

Router(config-flow-cache)# end

Ends the configuration session and returns to privileged EXEC mode.

Verifying the Configuration

This section shows how to verify successful configuration of NetFlow BGP next hop accounting.

SUMMARY STEPS

1. show ip cache verbose flow

2. show ip cache flow aggregation bgp-nexthop-tos

DETAILED STEPS

 
Command
Purpose

Step 1 

show ip cache verbose flow

Example:

Router> show ip cache verbose flow

Displays a detailed summary of NetFlow statistics (including additional NetFlow fields in the header when NetFlow Version 9 data export is configured).

Step 2 

show ip cache flow aggregation bgp-nexthop-tos

Example:

Router> show ip cache flow aggregation bgp-nexthop-tos

Displays information about the BGP next hop ToS aggregation cache.


Troubleshooting Tips

If there are no BGP-specific flow records in the NetFlow cache, make sure that CEF or dCEF switching is enabled and that the destination for NetFlow data export is configured. Also check the routing table for BGP routes.

Configuration Examples for NetFlow BGP Next Hop Support

This section provides the following configuration examples:

Configuring NetFlow BGP Next Hop Accounting: Example

Verifying the NetFlow BGP Next Hop Configuration: Example

Configuring NetFlow BGP Next Hop Accounting: Example

The following example shows how to configure NetFlow BGP next hop accounting with origin AS and BGP next hop statistics: 

Router> enable

Password:

Router# configure terminal

Enter configuration commands, one per line. End with CNTL/Z.

 Router(config)# ip flow-export Version 9 origin-as bgp-nexthop

 Router(config)# end

Router# 

3w1d:%SYS-5-CONFIG_I: Configured from console by console

Router# exit

Verifying the NetFlow BGP Next Hop Configuration: Example

The following example shows how to use the show ip cache verbose flow command to verify that NetFlow BGP next hop accounting is enabled: 

Router> show ip cache verbose flow

IP packet size distribution (120 total packets):

   1-32   64   96  128  160  192  224  256  288  320  352  384  416  448

480

   .000 .000 .000 1.00 .000 .000 .000 .000 .000 .000 .000 .000 .000 .000

.000


    512  544  576 1024 1536 2048 2560 3072 3584 4096 4608

   .000 .000 .000 .000 .000 .000 .000 .000 .000 .000 .000


IP Flow Switching Cache, 17826816 bytes

  8 active, 262136 inactive, 8 added

  26 ager polls, 0 flow alloc failures

  Active flows timeout in 30 minutes

  Inactive flows timeout in 15 seconds

IP Sub Flow Cache, 1081480 bytes

  8 active, 65528 inactive, 8 added, 8 added to flow

  0 alloc failures, 0 force free

  1 chunk, 1 chunk added

  last clearing of statistics never

Protocol         Total    Flows   Packets Bytes  Packets Active(Sec)

Idle(Sec)

--------         Flows     /Sec     /Flow  /Pkt     /Sec     /Flow

/Flow


SrcIf          SrcIPaddress    DstIf          DstIPaddress    Pr TOS Flgs

Pkts

Port Msk AS                    Port Msk AS    NextHop              B/Pk

Active

MUL:M_Opaks  M_Obytes BGP:BGP_NextHop

Et0/0/2        12.0.0.2        Et0/0/4        13.0.0.5        01 00  10

20

0000 /8  0                     0800 /8  0     11.0.0.6              100

0.0

BGP:26.0.0.6

Et0/0/2        12.0.0.2        Et0/0/4        15.0.0.7        01 00  10

20

0000 /8  0                     0800 /8  0     11.0.0.6              100

0.0

BGP:26.0.0.6

Et0/0/2        12.0.0.2        Et0/0/4        15.0.0.7        01 00  10

20

0000 /8  0                     0000 /8  0     11.0.0.6              100

0.0

BGP:26.0.0.6

Router> exit

The following example shows how to use the show ip cache flow aggregation bgp-nexthop-tos command to verify that NetFlow BGP next hop accounting is enabled: 

Router> show ip cache flow aggregation bgp-nexthop-tos

IP Flow Switching Cache, 278544 bytes

  1 active, 4095 inactive, 1 added

  8 ager polls, 0 flow alloc failures

  Active flows timeout in 30 minutes

  Inactive flows timeout in 15 seconds

IP Sub Flow Cache, 17224 bytes

  1 active, 1023 inactive, 1 added, 1 added to flow

  0 alloc failures, 0 force free

  1 chunk, 1 chunk added


Src If         Src AS  Dst If         Dst AS  TOS Flows   Pkts  B/Pk

Active

BGP NextHop

Et0/0/2        0       Et0/0/4           0     00    9     36     40

8.2

BGP:26.0.0.6

Router> exit

Additional References

The following sections provide references related to NetFlow BGP Next Hop Support:

Related Documents

Standards

MIBs

RFCs

Technical Assistance

Related Documents

Related Topic
Document Title

NetFlow

Cisco IOS Switching Services Configuration Guide, Release 12.3

Cisco IOS Switching Services Command Reference, Release 12.3 T

Cisco IOS Command Reference Master Index, Release 12.3

NetFlow Version 9 data export

NetFlow v9 Export Format feature module, Release 12.3

NetFlow Version 9 export format

NetFlow Version 9 Flow-Record Format white paper

Description of an actual customer deployment of NetFlow services within an IP network

NetFlow Services for an Enterprise Network integrated solutions document (ISD)

IP multicast routing

Cisco IOS IP Configuration Guide, Release 12.3, IP Multicast

NetFlow Minimum Prefix Mask For Router-Based Aggregation feature

NetFlow Minimum Prefix Mask for Router-Based Aggregation feature module, Release 12.1(3)T

NetFlow ToS-Based Router Aggregation feature

NetFlow ToS-Based Router Aggregation feature module, Release 12.1(3)T

Sampled NetFlow feature

Sampled NetFlow feature module, Release 12.0(26)S

NetFlow FlowCollector

NetFlow FlowCollector Installation and User Guide, Release 3.0

Release Notes for FlowCollector Release 3.0 and Release 3.0 (2.0)

NetFlow Data Analyzer

Network Data Analyzer Installation and User Guide, Release 3.0

Release Notes for Network Data Analyzer, Release 3.0


Standards

Standard
Title
   
   

MIBs

MIB
MIBs Link

To locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at the following URL:

http://www.cisco.com/go/mibs


RFCs

RFC
Title
   
   

Technical Assistance

Description
Link

The Cisco Technical Support website contains thousands of pages of searchable technical content, including links to products, technologies, solutions, technical tips, and tools. Registered Cisco.com users can log in from this page to access even more content.

http://www.cisco.com/techsupport


Command Reference

This section documents modified commands. All other commands used with this feature are documented in the Cisco IOS Release 12.3 T command reference publications.

ip flow-aggregation cache

ip flow-export

show ip cache flow aggregation

show ip cache verbose flow

ip flow-aggregation cache

To enable NetFlow accounting aggregation cache schemes, use the ip flow-aggregation cache command in global configuration mode. To disable NetFlow accounting aggregation cache schemes, use the no form of this command.

ip flow-aggregation cache {as | as-tos | bgp-nexthop-tos | destination-prefix | destination-prefix-tos | prefix | prefix-port | prefix-tos | protocol-port | protocol-port-tos | source-prefix | source-prefix-tos}

no ip flow-aggregation cache {as | as-tos | bgp-nexthop-tos | destination-prefix | destination-prefix-tos | prefix | prefix-port | prefix-tos | protocol-port | protocol-port-tos | source-prefix | source-prefix-tos}

Syntax Description

as

Configures the autonomous system aggregation cache scheme.

as-tos

Configures the autonomous system type of service (ToS) aggregation cache scheme.

bgp-nexthop-tos

Configures the Border Gateway Protocol (BGP) next hop ToS aggregation cache scheme.

destination-prefix

Configures the destination-prefix aggregation cache scheme.

destination-prefix-tos

Configures the destination prefix ToS aggregation cache scheme.

prefix

Configures the prefix aggregation cache scheme.

prefix-port

Configures the prefix port aggregation cache scheme.

prefix-tos

Configures the prefix ToS aggregation cache scheme.

protocol-port

Configures the protocol-port aggregation cache scheme.

protocol-port-tos

Configures the protocol-port ToS aggregation cache scheme.

source-prefix

Configures the source-prefix aggregation cache scheme.

source-prefix-tos

Configures the source-prefix ToS aggregation cache scheme.


Command Default

This command is not enabled by default.

Command Modes

Global configuration

Command History

Release
Modification

12.0(3)T

This command was introduced.

12.0(15)S

This command was modified to include the ToS aggregation scheme keywords.

12.2(2)T

This command was modified to enable multiple NetFlow export destinations.

12.2(14)S

This command was integrated into Cisco IOS Release 12.2(14)S.

12.3(1)

The bgp-nexthop-tos aggregation scheme keyword was added.

12.2(18)S

The bgp-nexthop-tos aggregation cache keyword was added.

12.0(26)S

The bgp-nexthop-tos aggregation cache keyword was added.

12.2(27)SBC

This command was integrated into Cisco IOS Release 12.2(27)SBC.


Usage Guidelines

You must have NetFlow accounting configured on your router before you can use this command. The export destination command supports a maximum of two concurrent export destinations.

The ToS aggregation cache scheme keywords enable NetFlow accounting aggregation cache schemes that include the ToS byte in their export records. The ToS byte is an 8-bit field in the IP header. The ToS byte specifies the quality of service for a datagram during its transmission through the Internet.

You can enable only one aggregation cache configuration scheme per command line. The following rules apply to configuring source and destination masks.

The source mask can only be configured in the prefix, prefix-port, prefix-tos, source-prefix and source-prefix-tos aggregation modes.

The destination mask can only be configured in the prefix, prefix-port, prefix-tos, destination-prefix and destination-prefix-tos aggregation modes.

No masks can be configured in non-prefix aggregation modes

To enable aggregation (whether or not an aggregation cache is fully configured), you must enter the enabled command in aggregation cache configuration mode. (You can use the no form of this command to disable aggregation. The cache configuration remains unchanged even if aggregation is disabled.)

Examples

The following example shows how to configure a NetFlow accounting autonomous system aggregation cache scheme: 

Router(config)# ip flow-aggregation cache as

Router(config-flow-cache)# enabled

The following example shows how to configure a minimum prefix mask of 16 bits for the NetFlow accounting destination-prefix aggregation cache scheme: 

Router(config)# ip flow-aggregation cache destination-prefix

Router(config-flow-cache)# mask destination minimum 16

Router(config-flow-cache)# enabled

The following example shows how to configure a minimum prefix mask of 16 bits for the NetFlow accounting source-prefix aggregation cache scheme: 

Router(config)# ip flow-aggregation cache source-prefix

Router(config-flow-cache)# mask source minimum 16

Router(config-flow-cache)# enabled

The following example shows how to configure multiple export destinations for the NetFlow accounting autonomous system ToS aggregation cache scheme: 

Router(config)# ip flow-aggregation cache as-tos

Router(config-flow-cache)# export destination 172.17.24.65 9991

Router(config-flow-cache)# export destination 172.16.10.2 9991

Router(config-flow-cache)# enabled

Related Commands

Command
Description

export destination (aggregation cache)

Enables the exporting of NetFlow accounting information from NetFlow aggregation caches.

enabled (aggregation cache)

Enables the NetFlow aggregation cache.

mask

Specifies the source or destination prefix mask.

show ip cache flow aggregation

Displays a summary of the NetFlow accounting aggregation cache statistics.

show ip cache flow

Displays a summary of the NetFlow accounting statistics.

show ip cache verbose flow

Displays a detailed summary of the NetFlow accounting statistics.

show ip flow interface

Displays NetFlow accounting configuration for interfaces.


ip flow-export

To enable the export of information in NetFlow cache entries, use the ip flow-export command in global configuration mode. To disable the export of information, use the no form of this command.

ip flow-export [destination ip-address udp-port] | [source {ip-address | interface-name}] | [version {1 | [{5 | 9} [origin-as | peer-as] [bgp-nexthop]]}] | [template {refresh-rate packets | timeout-rate minutes} [options {export-stats | refresh-rate packets | timeout-rate minutes}]]

no ip flow-export [destination ip-address udp-port] | [source {ip-address | interface-name}] | [version {1 | [{5 | 9} [origin-as | peer-as] [bgp-nexthop]]}] | [template {refresh-rate packets | timeout-rate minutes} [options {export-stats | refresh-rate packets | timeout-rate minutes}]]

Syntax Description

destination ip-address udp-port

IP address and protocol-specific port number of the workstation to which you want to send the NetFlow information.

source {ip-address | interface-name}

IP address and interface type and number for the source address.

version 1

(Optional) Specifies that the export packet uses the version 1 format. This is the default. The version field occupies the first two bytes of the export record. The number of records stored in the datagram is a variable from 1 to 24 for version 1.

version 5

(Optional) Specifies that the export packet uses the version 5 format. The number of records stored in the datagram is a variable between 1 and 30 for version 5.

version 9

(Optional) Specifies that the export packet uses the version 9 format.

origin-as

(Optional) Specifies that export statistics include the origin autonomous system (AS) for the source and destination.

peer-as

(Optional) Specifies that export statistics include the peer AS for the source and destination.

bgp-nexthop

(Optional) Specifies that export statistics include BGP next hop related information.

template

Specifies that the refresh-rate and timeout-rate keywords apply to the template.

options

Specifies that the export-stats, refresh-rate, and timeout-rate keywords apply to the options template.

export-stats

(Optional) Specifies that the export statistics include the total number of flows exported and the total number of packets exported.

refresh-rate packets

(Optional) Specifies the number of export packets before the options are resent. You can specify from 1 to 600 packets. The default is 20 packets.

timeout-rate minutes

(Optional) Specifies the time before the options are resent. You can specify from 1 to 3600 minutes. The default is 30 minutes.


Command Default

Export of information in NetFlow cache entries is disabled. You can specify origin AS accounting or peer AS export accounting, but not both.

Command Modes

Global configuration

Command History

Release
Modification

11.1 CA

This command was introduced.

12.0(24)S

This command was integrated into Cisco IOS Release 12.0(24)S, and the (version) 9 keyword was added.

12.3(1)

This command was integrated into Cisco IOS Release 12.3(1), and the bgp-nexthop keyword was added.

12.2(18)S

The bgp-nexthop keyword was added.

12.0(26)S

The bgp-nexthop keyword was added.

12.2(27)SBC

This command was integrated into Cisco IOS Release 12.2(27)SBC.


Usage Guidelines

A NetFlow cache entry contains a lot of information. When flow switching is enabled with the ip route-cache flow command, you can use the ip flow-export command to configure the router to export the flow cache entries to a destination (such as a system running the NetFlow Collection Engine) when flows expire. This configuration can be useful for statistics, billing, and security.

Version 5 and version 9 formats include the source and destination AS addresses and source and destination prefix masks. Also, version 9 includes BGP next hop information. Because this change might appear on your router as a maintenance release, support for version 1 format is maintained with the version 1 keyword.

Caution Entering the ip flow-export or no ip flow-export command on the Cisco 12000 Series Internet routers and specifying any version format other than version 1 (in other words, entering the ip flow-export or no ip flow-export command and specifying either the version 5 or version 9 keyword) causes packet forwarding to stop for a few seconds while NetFlow reloads the route processor and line card CEF tables. To avoid interruption of service to a live network, apply this command during a change window, or include it in the startup-config file to be executed during a router reboot.

For more information on version 1 and version 5 data format, see the "NetFlow Data Format" section in the "Configuring NetFlow Switching" chapter of the Cisco IOS Switching Services Configuration Guide. For more information on version 9 data format, see the Cisco IOS NetFlow Version 9 Flow-Record Format white paper.

Examples

The following example shows how to configure the router to export the NetFlow cache entry to UDP port 125 on the workstation at 134.22.23.7 when the flow expires using version 1 format: 

Router(config)# ip flow-export 134.22.23.7 125

The following example shows how to configure the router to export the NetFlow cache entry to UDP port 2048 on the workstation at 134.22.23.7 when the flow expires using version 5 format and includes the peer AS information: 

Router(config)# ip flow-export 134.22.23.7 2048 version 5 peer-as

Related Commands

Command
Description

debug ip flow export

Enables debugging output for NetFlow data export.

export destination

Enables the exporting of information from NetFlow aggregation caches.

ip route-cache flow

Enables NetFlow switching for IP routing.

show ip flow export

Displays the statistics for the NetFlow data export.


show ip cache flow aggregation

To display the NetFlow accounting aggregation cache statistics, use the show ip cache flow aggregation command in user EXEC or privileged EXEC mode.

show ip cache [prefix mask] [type number] [verbose] flow aggregation {as | as-tos | bgp-nexthop-tos | destination-prefix | destination-prefix-tos | prefix | prefix-port | prefix-tos | protocol-port | protocol-port-tos | source-prefix | source-prefix-tos}

Syntax Description

prefix mask

(Optional) Displays only the entries in the cache that match the prefix and mask combination.

type number

(Optional) Displays only the entries in the cache that match the interface type and number combination.

verbose

(Optional) Displays additional information from the aggregation cache.

as

Displays the configuration of the autonomous system aggregation cache scheme.

as-tos

Displays the configuration of the autonomous system type of service (ToS) aggregation cache scheme.

bgp-nexthop-tos

Displays the BGP next hop and ToS aggregation cache scheme.

destination-prefix

Displays the configuration of the destination prefix aggregation cache scheme.

destination-prefix-tos

Displays the configuration of the destination prefix ToS aggregation cache scheme.

prefix

Displays the configuration of the prefix aggregation cache scheme.

prefix-port

Displays the configuration of the prefix port aggregation cache scheme.

prefix-tos

Displays the configuration of the prefix ToS aggregation cache scheme.

protocol-port

Displays the configuration of the protocol port aggregation cache scheme.

protocol-port-tos

Displays the configuration of the protocol port ToS aggregation cache scheme.

source-prefix

Displays the configuration of the source prefix aggregation cache scheme.

source-prefix-tos

Displays the configuration of the source prefix ToS aggregation cache scheme.


Command Modes

User EXEC
Privileged EXEC

Command History

Release
Modification

12.0(3)T

This command was introduced.

12.0(15)S

This command was modified to include new show output for ToS aggregation schemes.

12.2(14)S

This command was integrated into Cisco IOS Release 12.2(14)S.

12.3(1)

The bgp-nexthop-tos keyword was added.

12.2(18)S

The bgp-nexthop-tos aggregation cache keyword was added.

12.0(26)S

The bgp-nexthop-tos aggregation cache keyword was added.

12.2(27)SBC

This command was integrated into Cisco IOS Release 12.2(27)SBC.


Examples

The following is a sample display of an autonomous system aggregation cache with the show ip cache flow aggregation as command: 

Router# show ip cache flow aggregation as


IP Flow Switching Cache, 278544 bytes

  2 active, 4094 inactive, 13 added

  178 ager polls, 0 flow alloc failures


Src If       Src AS  Dst If       Dst AS  Flows   Pkts  B/Pk  Active

Fa1/0         0      Null          0         1      2     49    10.2

Fa1/0         0      Se2/0         20        1      5    100     0.0

The following is a sample display of an autonomous system aggregation cache for the prefix mask 10.0.0.1 255.0.0.0 with the show ip cache flow aggregation as command: 

Router# show ip cache 10.0.0.1 255.0.0.0 flow aggregation as


IP Flow Switching Cache, 278544 bytes

  2 active, 4094 inactive, 13 added

  178 ager polls, 0 flow alloc failures


Src If        Src AS  Dst If         Dst AS     Flows    Pkts  B/Pk  Active

e1/2           0      Null            0            1     2       49    10.2

e1/2           0      e1/2           20            1     5      100     0.0

The following is a sample display of an autonomous system aggregation cache for 10.0.0.1 255.0.0.0 Ethernet1/2 with the show ip cache verbose flow aggregation as command: 

Router# show ip cache 10.0.0.1 255.0.0.0 e1/2 verbose flow aggregation as


IP Flow Switching Cache, 278544 bytes

  2 active, 4094 inactive, 13 added

  178 ager polls, 0 flow alloc failures


Src If        Src AS  Dst If         Dst AS     Flows    Pkts  B/Pk  Active

e1/2           0      Null            0            1     2       49    10.2

e1/2           0      e1/2           20            1     5      100     0.0

The following is a sample display of an autonomous system ToS aggregation cache with the show ip cache verbose flow aggregation as-tos command: 

Router# show ip cache verbose flow aggregation as-tos


IP Flow Switching Cache, 278544 bytes

  4 active, 4092 inactive, 103 added

  1609 ager polls, 0 flow alloc failures


Src If         Src AS  Dst If         Dst AS  TOS Flows   Pkts  B/Pk  Active

Et1/2           50     Fd4/0           40     CC     1   3568     28    17.8

Et1/2           0      Fd4/0           40     C0    15     17K    28    17.8

Et1/1           50     Fd4/0           40     55     1   3748     28    17.8

Fd4/0           0      Null            0      C0     1      2     49     0.9

The following is a sample display of a protocol port ToS aggregation cache with the show ip cache verbose flow aggregation protocol-port-tos command: 

Router# show ip cache verbose flow aggregation protocol-port-tos


IP Flow Switching Cache, 278544 bytes

  4 active, 4092 inactive, 102 added

  1584 ager polls, 0 flow alloc failures


Prot Src If        SrcPort  Dst If        DstPort TOS Flows  Pkts  B/Pk  Active

0x01 Et1/2           0000   Fd4/0           0000  C0    15    17K    28    17.8

0x01 Et1/2           0000   Fd4/0           0000  CC     1  3568     28    17.8

0x01 Et1/1           0000   Fd4/0           0000  55     1  3748     28    17.8

0x06 Fd4/0           00B3   Null            2AF9  C0     1     2     49     0.9

The following is a sample display of a source prefix ToS aggregation cache with the show ip cache verbose flow aggregation source-prefix-tos command: 

Router# show ip cache verbose flow aggregation source-prefix-tos


IP Flow Switching Cache, 278544 bytes

  4 active, 4092 inactive, 105 added

  1683 ager polls, 0 flow alloc failures


Src If         Src Prefix      Msk  AS    TOS Flows  Pkts B/Pk  Active

Et1/1          52.0.0.0        /8   50    55     1  3748    28    17.8

Et1/2          52.0.0.0        /8   50    CC     1  3568    28    17.8

Et1/2          0.0.0.0         /0   0     C0    15    17K   28    17.8

Fd4/0          20.20.20.1      /32  0     C0     1     2    49     0.9

The following is a sample display of a destination prefix ToS aggregation cache with the show ip cache verbose flow aggregation destination-prefix-tos command: 

Router# show ip cache verbose flow aggregation destination-prefix-tos


IP Flow Switching Cache, 278544 bytes

  4 active, 4092 inactive, 86 added

  1480 ager polls, 0 flow alloc failures


Dst If         Dst Prefix      Msk  AS    TOS Flows  Pkts B/Pk  Active

Local          31.31.31.1      /32  0     C0     1     2    49     0.9

Fd4/0          42.0.0.0        /8   40    55     1  3748    28    17.8

Fd4/0          42.0.0.0        /8   40    CC     1  3568    28    17.8

Fd4/0          42.0.0.0        /8   40    C0    15    17K   28    17.8

The following is a sample display of a prefix ToS aggregation cache with the show ip cache verbose flow aggregation prefix-tos command: 

Router# show ip cache verbose flow aggregation prefix-tos


IP Flow Switching Cache, 278544 bytes

  4 active, 4092 inactive, 4 added

  14 ager polls, 0 flow alloc failures


Src If         Src Prefix      Dst If         Dst Prefix      TOS Flows    Pkts

               Msk AS                         Msk AS              B/Pk   Active

Et1/2          0.0.0.0         Fd4/0          42.0.0.0        C0    15    3933 

               /0  0                          /8  40                28     3.9

Et1/1          52.0.0.0        Fd4/0          42.0.0.0        55     1     826 

               /8  50                         /8  40                28     3.9

Et1/2          52.0.0.0        Fd4/0          42.0.0.0        CC     1     787 

               /8  50                         /8  40                28     3.9

The following is a sample display of a prefix port aggregation cache with the show ip cache verbose flow aggregation prefix-port command: 

Router# show ip cache verbose flow aggregation prefix-port


IP Flow Switching Cache, 278544 bytes

  4 active, 4092 inactive, 105 added

  1679 ager polls, 0 flow alloc failures


Src If         Src Prefix      Dst If         Dst Prefix      TOS Flows    Pkts

               Port Msk                       Port Msk        Pr  B/Pk   Active

Fd4/0          20.20.20.1      Local          31.31.31.1      C0     1       2 

               00B3 /32                       2AF9 /32        06    49     0.9

Et1/2          0.0.0.0         Fd4/0          42.0.0.0        C0    15      17K

               0000 /0                        0000 /8         01    28    17.8

Et1/1          52.0.0.0        Fd4/0          42.0.0.0        55     1    3748 

               0000 /8                        0000 /8         01    28    17.8

Et1/2          52.0.0.0        Fd4/0          42.0.0.0        CC     1    3568 

               0000 /8                        0000 /8         01    28    17.8

Table 3 describes the significant fields shown in the output of the show ip cache verbose flow aggregation command.

Table 3 Field Descriptions for the show ip cache verbose flow aggregation command 

Field
Description

bytes

Number of bytes of memory used by the NetFlow cache.

active

Number of active flows in the NetFlow cache at the time this command was entered.

inactive

Number of flow buffers that are allocated in the NetFlow cache, but are not currently assigned to a specific flow at the time this command is entered.

added

Number of flows created since the start of the summary period.

ager polls

Number of times the NetFlow code looked at the cache to cause entries to expire. (Used by Cisco for diagnostics only.)

flow alloc failures

Number of times the NetFlow code tried to allocate a flow but could not.

Src If

Specifies the source interface.

Src AS

Specifies the source autonomous system.

Dst If

Specifies the destination interface.

Dst AS

Specifies the destination autonomous system.

Flows

Number of flows.

Pkts

Number of packets.

B/Pk

Average number of bytes observed for the packets seen for this protocol (total bytes for this protocol or the total number of flows for this protocol for this summary period).

Active

Number of active flows in the NetFlow cache at the time this command was entered.


Related Commands

Command
Description

cache

Defines operational parameters for NetFlow accounting aggregation caches.

enabled (aggregation cache)

Enables a NetFlow accounting aggregation cache.

export destination (aggregation cache)

Enables the exporting of NetFlow accounting information from NetFlow aggregation caches.

ip flow-aggregation cache

Enables NetFlow accounting aggregation cache schemes.

mask (IPv4)

Specifies the source or destination prefix mask for a NetFlow accounting prefix aggregation cache.

show ip cache flow

Displays a summary of the NetFlow accounting statistics.

show ip cache verbose flow

Displays a detailed summary of the NetFlow accounting statistics.

show ip flow interface

Displays NetFlow accounting configuration for interfaces.


show ip cache verbose flow

To display a detailed summary of the NetFlow accounting statistics, use the show ip cache verbose flow command in user EXEC or privileged EXEC mode.

show ip cache verbose flow

Syntax Description

This command has no keywords or arguments.

Command Modes

User EXEC
Privileged EXEC

Command History

Release
Modification

11.1

This command was introduced.

11.1CA

The information display for the command was updated.

12.3(1)

The command output was updated to display additional NetFlow fields.

12.0(24)S

MPLS flow records were added to the command output.

12.3(4)T, 12.3(6), 12.2(20)S

The execute-on command was modified on the Cisco 7500 platforms to include the remote execution of the show ip cache verbose flow command.

12.3(8)T

MPLS flow records were added to the command output for Cisco IOS Release 12.3(8)T.

12.3(11)T

Support for egress flow accounting was added, and the [prefix mask] and [type number] arguments were removed.

12.3(14)T

Support for NetFlow Layer 2 and Security Monitoring Exports was added.

12.2(27)SBC

This command was integrated into Cisco IOS Release 12.2(27)SBC.

12.2(18)SXF

This command was integrated into Cisco IOS Release 12.2(18)SXF


Usage Guidelines

Use the show ip cache verbose flow command to display flow record fields in the NetFlow cache in addition to the fields that are displayed with the show ip cache flow command. The values in the additional fields that are shown depend on the NetFlow features that are enabled and the flags that are set in the flow.

Note The flags, and therefore the fields, might vary from flow to flow.

Some of the content in the display of the show ip cache verbose flow command uses multiline headings and multiline data fields. Figure 1 shows how to associate the headings with the correct data fields when there are two lines of headings and two lines of data fields. The first line of the headings is associated with the first line of data fields. The second line of the headings is associated with the second line of data fields.

When other features such as IP Multicast are configured, the number of lines in the headings and data fields increases. The method for associating the headings with the correct data fields remains the same.

Figure 1 How to Use the Multiline Headings and Multiline Data Fields in the Display Output from the show ip cache verbose flow Command

NetFlow Multicast Support

When the NetFlow Multicast Support feature is enabled, the show ip cache verbose flow command displays the number of replicated packets and the packet byte count for NetFlow multicast accounting. When you configure the NetFlow Version 9 Export Format feature, this command displays additional NetFlow fields in the header.

MPLS-aware NetFlow

When you configure the MPLS-aware NetFlow feature, you can use the show ip cache verbose flow command to display both the IP and MPLS portions of MPLS flows in the NetFlow cache on a router line card. To display only the IP portion of the flow record in the NetFlow cache when MPLS-aware NetFlow is configured, use the show ip cache flow command.

NetFlow BGP Nexthop

The NetFlow bgp-nexthop command can be configured when either the Version 5 export format or the Version 9 export format is configured. The following caveats apply to the bgp-nexthop command:

The values for the BGP nexthop IP address are exported to a NetFlow collector only when the Version 9 export format is configured.

In order for the BGP information to be populated in the main cache you must either have a NetFlow export destination configured or NetFlow aggregation configured.

Displaying Detailed NetFlow Cache Information on Platforms Running Distributed Cisco Express Forwarding

On platforms running Distributed Cisco Express Forwarding (dCEF), NetFlow cache information is maintained on each line card or Versatile Interface Processor. If you want to use the show ip cache verbose flow command to display this information on a distributed platform, you must enter the command at a line card