Skip to main content

Cisco ASA 5512 Configuration

This document outlines the steps to configure Motadata Export export on a Cisco ASA 5512 using ASDM.

Configuring Flow Collector

  1. In ASDM, navigate to Configuration > Device Management > Logging > MOTADATA_NETFLOW.
  2. Set the following parameters:
    • Flow Explorer server IP address.
    • ASA interface through which MOTADATA_NETFLOW packets will be exported.
    • MOTADATA_NETFLOW listener port (default is 2055).
  3. Choose the interface that connects to the server where the ObserveOps (formerly known as AIOps) Flow Explorer is installed.
  4. Set the template packet send frequency.
  5. Disable redundant syslogs after extracting MOTADATA_NETFLOW information.
  6. Set the template timeout rate to 1 minute.
  7. Delay transmission of flow creation events for short-lived flows to 60 seconds.
  8. Click on Apply to write the commands to ASA.

Configuring MOTADATA_NETFLOW Information Extraction

  1. Navigate to Firewall > Service Policy Rules.
  2. Create a new service policy that needs to be applied globally.
  3. Define the collector where the statistics for this traffic will be sent (as defined previously).
  4. After creating the service policy, click on Apply to write the commands to ASA.

After completing the configuration, navigate to Menu > Flow Explorer and select Explorer to view the active flow data.