Flexible NetFlow • Network Operations • Security Operations

VRF Aware NetFlow: Network Traffic Monitoring

Read about virtual routing first before reading this post. VRF aware Netflow is available in Scrutinizer since v7 and in IOS starting with 12.4(11)T, however I also saw in some documentation that support for VRF input was added in 15.0(1)M. This is of course via Flexible Netflow. You can set the input VRF as a key field in the NetFlow record, then use the VRF ID to filter reports based on that VRF in scrutinizer.

If you are using standard Netflow v5 or v9, you’re out-a-luck. The same goes for anything that doesn’t support FnF.

You would add the following to the flow record definition:
match routing vrf input

Reach out to us if you need help making Cisco VRF NetFlow Reporting part of your network traffic monitoring solution.

A desktop, mobile phone and laptop, representing a variety of endpoint security vulnerabilities

Endpoint security stats you need to know

Endpoint security is crucial for protecting your organization from cyber threats. With the increasing vulnerabilities posed by human actions, it’s essential to have key insights

May 16, 2023 No Comments

Is NetFlow useful for security analysis?

Network flow data (NetFlow, IPFIX, sFlow, etc.) is telemetry data extracted from your network infrastructure. Network Operations teams frequently tap into this data set to

April 27, 2023 No Comments

Deep Network Observability

What is Deep Network Observability?

Network Observability is the ability to collect, analyze, and activate network data. With network observability, you can easily answer questions about your network. Deep Network

April 13, 2023 No Comments

VRF Aware NetFlow: Network Traffic Monitoring

Related

Endpoint security stats you need to know

Is NetFlow useful for security analysis?

What is Deep Network Observability?

How we help

Learn about us

Support