Skip to main content

Configuring Flexible MOTADATA_NETFLOW Export on a Cisco Device

Flexible MOTADATA_NETFLOW is a powerful tool for traffic analysis and data export on networking devices. This document outlines how to configure Flexible MOTADATA_NETFLOW export in a few easy steps, allowing you to monitor specific network behaviors using customized flow records.

Steps for Configuring Flexible MOTADATA_NETFLOW Export

  1. Configure the exporter.
  2. Configure the Flow Monitor with the predefined Flow Record and Flow Exporter.
  3. Add the Flow Monitor to the interface to monitor ingress (input) or egress (output) traffic.

Configuring Exporter

Enter global configuration mode on the router or MSFC, and issue the following commands to create the exporter:

flow exporter {exporter_name}
 destination {destination_ip_address}
 export-protocol version-9
 transport udp 2055
 exit

Multiple Flow exporter profiles can be configured with unique names.

Flow Monitor and Flow Record Configuration

Configure the Flow Monitor with the following commands:

ip flow monitor {monitor_name}
 record MOTADATA_NETFLOW-original
 exporter {exporter_name}
 cache timeout active 60
 cache timeout inactive 15
 exit

The Flow record configuration defines the fields exported via the MOTADATA_NETFLOW protocol. Cisco provides predefined flow records such as MOTADATA_NETFLOW-original and MOTADATA_NETFLOW ipv4 original-input, which can be used to export basic key fields and time stamp fields. Flow monitors can include packet sampling information if needed.

Associate Flow Monitor to Interface

To enable MOTADATA_NETFLOW on a specific interface, enter global configuration mode and issue the commands:

interface {interface} {interface_number}
 ip flow monitor {monitor_name} input

The Flow Monitor must be attached to an interface to export flow statistics accurately.

Verifying Device Configuration

To verify whether MOTADATA_NETFLOW export has been configured correctly, issue the following commands in normal (not configuration) mode:

# [Include relevant commands for verification if provided in original text]

Please note that MOTADATA_NETFLOW data export must be enabled on all interfaces of a router for accurate IN and OUT traffic statistics. For example, if you have a router with interfaces A and B, enabling MOTADATA_NETFLOW on interface A will export IN traffic for A and OUT traffic will be contributed by the data from interface B. Ensure you enable MOTADATA_NETFLOW on both interfaces if managing only interface A is desired, and subsequently unmanage interface B from the License Management link.

For further information on configuring your IOS device for MOTADATA_NETFLOW data export, refer to Cisco's MOTADATA_NETFLOW commands documentation.