Cisco vEdge-1000b and vEdge-100b Configuration

This document provides step-by-step instructions for configuring Cisco vEdge-1000b and vEdge-100b devices. Follow the commands outlined to set up the necessary policies for monitoring traffic.

Configure the cflowd template:

policy cflowd-template MFE-cflowd-template
collector vpn 1 address {MOTADATA_NETFLOW_SERVER_IP} port {MOTADATA_NETFLOW_SERVER_LISTENER_PORT} transport-type transport_udp source-interface {LOOPBACK_INTERFACE_NAME}
flow-active-timeout 30
flow-inactive-timeout 60
template-refresh 90
exit

Create a list of VPNs to monitor:

policy lists vpn-list vpn_1 vpn 1

Create a list of sites for the data policy:

policy lists site-list cflowd-sites site-id {SITE_IDS}

Configure the data policy:

policy data-policy MFE-cflowd-policy
vpn-list vpn_1
sequence 1
match protocol 6
exit
action accept cflowd
exit
exit
default-action accept

Apply the policy and cflowd template:

apply-policy site-list cflowd-sites data-policy MFE-cflowd-policy
apply-policy site-list cflowd-sites cflowd-template MFE-cflowd-template

Activate the data policy:

validate
commit
exit configuration-mode

After completing the configuration, navigate to Menu > Flow Explorer and select Explorer to view the active flow data.