Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide

Similar documents
User and System Administration

Configuring the Cisco NAM 2220 Appliance

Overview of the NAM Traffic Analyzer

Configuring Virtual Service Blades

Troubleshooting the Network Analysis Module. Netflow Data Export. Web Application CHAPTER

Cisco Branch Routers Series Network Analysis Module (NME-NAM-120S) Installation and Configuration Note, 4.2

Configuring Cisco Prime NAM

This section provides reference information on the following topics: Understanding NAM Behavior GUI Field Descriptions Report Descriptions

Release Notes for Cisco Network Analysis Software, Release 4.2

VSB Backup and Recovery

Overview of the Cisco NCS Command-Line Interface

Cisco Nexus 7000 Series NX-OS Virtual Device Context Command Reference

FAQs for the Cisco Aironet Conversion Tool Version 2.1 for Cisco IOS Software

Cisco ASR 9000 Series Aggregation Services Router Netflow Command Reference, Release 4.3.x

NetFlow Configuration Guide

Cisco Nexus 7000 Series NX-OS LISP Command Reference

User and System Administration

Flexible NetFlow Full Flow support

Exporting and Importing a Virtual Service Blade

NAM CLI Commands: show password strong-policy - web user

NAM CLI Commands: show patches - web user

Cisco Prime Network Analysis Module Catalyst 6500 Series Switch Installation and Configuration Guide, 5.0(1T)

NAM 6.3(2) Image Contents Upgrading to NAM 6.3(2) Verifying NAM 6.3(2) Image Installation Known Issues in Release 6.3(2)...

SSL VPN Reinstallation

Netflow v9 for IPv6. Finding Feature Information. Prerequisites for Netflow v9 for IPv6. Information About Netflow v9 for IPv6

Using the Cisco NX-OS Setup Utility

Cisco Nexus 7000 Series Switches Configuration Guide: The Catena Solution

Catalyst 6500 Series Switch and Cisco 7600 Series Router Network Analysis Module Installation and Configuration Note, 5.0

Cisco Nexus 1000V Software Upgrade Guide, Release 4.0(4)SV1(3d)

No Service Password-Recovery

Configuring VLANs. Finding Feature Information. Prerequisites for VLANs

Cisco IMC Supervisor Rack-Mount Servers Management Guide, Release 1.0

ECDS MDE 100XVB Installation Guide on ISR G2 UCS-E and VMWare vsphere Hypervisor (ESXi)

Flexible Netflow Configuration Guide, Cisco IOS XE Release 3SE (Catalyst 3850 Switches)

6.1. Getting Started Guide

Using the Cisco NX-OS Setup Utility

Configuring VLANs. Finding Feature Information. Prerequisites for VLANs

Configuring Application Visibility and Control for Cisco Flexible Netflow

Troubleshooting APPENDIX

NAM Deployment CHAPTER

Peplink SD Switch User Manual. Published on October 25th, 2018

Monitoring and Analysis

Firewall Authentication Proxy for FTP and Telnet Sessions

Using NetFlow Sampling to Select the Network Traffic to Track

Configuring SNMP and using the NetFlow MIB to Monitor NetFlow Data

NetFlow Monitoring. NetFlow Monitoring

Cisco VDS Service Broker Software Installation Guide for UCS Platforms

Using Cisco Discovery Protocol

Release Notes for Cisco Video Surveillance High Definition IP Cameras, Release 1.4.1

Cisco IOS Flexible NetFlow Command Reference

Configuring NetFlow Top Talkers using Cisco IOS CLI Commands or SNMP Commands

Actual4Test. Actual4test - actual test exam dumps-pass for IT exams

Cisco Nexus 1000V Installation and Upgrade Guide, Release 5.2(1)SV3(1.4)

Setting Up Physical Inventory

Configuring Data Export for Flexible NetFlow with Flow Exporters

Release Notes for Cisco UCS Platform Emulator, Release 3.1(1ePE1)

Configuring Local SPAN and ERSPAN

Switches running the LAN Base feature set support only static routing on SVIs.

Cisco Nexus 1000V for KVM Security Configuration Guide, Release 5.x

Metadata Configuration Guide Cisco IOS Release 15M&T

Configuring NetFlow BGP Next Hop Support for Accounting and Analysis

GSS Administration and Troubleshooting

Deployment Guide for Cisco Guest Access Using the Cisco Wireless LAN Controller, Release 4.1

Configuring NetFlow. Information About NetFlow. What is a Flow. This chapter contains the following sections:

Working with Configuration Files

DGS-3630-Series Switches

RAID Controller Firmware Upgrade Instructions for the Cisco WAVE-7541, 7571, and 8541

Monitoring Data CHAPTER

Cisco IMC Supervisor Installation Guide for VMware vsphere and Microsoft Hyper-V, Release 2.0

Configuring sflow. Information About sflow. sflow Agent. This chapter contains the following sections:

Cisco IPT Platform Administration Command-Line Interface Guide

Cisco Nexus Data Broker for Network Traffic Monitoring and Visibility

Cisco Virtual Networking Solution for OpenStack

Configuring NetFlow. About NetFlow. This chapter describes how to configure the NetFlow feature on Cisco NX-OS devices.

Cisco MDS 9000 Series Programmability Guide

Maintaining the System Software

QUICK START GUIDE Cisco Physical Access Manager Quick Start Guide, Release 1.4.1

Configuring the Cisco IOS XE DHCP Server

This chapter describes how to configure the NetFlow feature on Cisco NX-OS devices.

Inspection of Router-Generated Traffic

Release Notes for Cisco Remote PHY for Cisco 1x2 / Compact Shelf RPD Software 4.1

Release Notes for the Cisco ESS 2020 Switch, Cisco IOS Release 15.0(2)EC and Later

DHCP Server RADIUS Proxy

Configuring the WMIC for the First Time

QoS: Policing Support for GRE Tunnels

Zone-Based Firewall Logging Export Using NetFlow

Installing the Cisco Nexus 1000V Software Using ISO or OVA Files

PT Activity: Configuring a Zone-Based Policy Firewall (ZPF)

NetFlow and NetFlow Data Export.

Cisco Nexus 1000V Software Upgrade Guide, Release 4.2(1)SV1(4a)

RADIUS Packet of Disconnect

CCNA 1 Chapter 2 v5.0 Exam Answers %

Readme for Device Packs 5.0 for Cisco Prime Infrastructure 2.0

On the Cisco Nexus 5548 Switch, Fibre Channel ports and VSAN ports cannot be configured as ingress source ports in a SPAN session.

Release Notes for Cisco Aironet a/b/g Client Adapters (CB21AG and PI21AG) for Windows Vista 1.1

Release Notes for Cisco ASDM Version 5.2(5)

Cisco ASR 9000 Series Aggregation Services Router System Security Command Reference, Release 4.1

Cisco TrustSec How-To Guide: Universal Configuration for the Cisco Wireless LAN Controller

Cisco UCS Diagnostics User Guide for B-Series Servers, Release 1.0

IP Addressing: DNS Configuration Guide

Transcription:

Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part Number: OL-31775-01

2014 Cisco Systems, Inc. All rights reserved.

CONTENTS Preface Preface v Obtaining Documentation and Submitting a Service Request v CHAPTER 1 Introduction 1 Introduction 1 CHAPTER 2 Installation Requirements 3 Nexus 1110 Virtual Services Appliance Requirements 3 Configuration Requirements 3 CHAPTER 3 Installing NAM Software on the Nexus 1110 Appliance 5 Installing NAM Software on a Nexus 1110 Appliance 5 Licensing 7 Node-Locking Information 7 Obtaining a License 7 Installing a License 8 Licensing Commands 8 Obtaining Licensing Information 8 About the NAM GUI 8 Audit Trail 8 System Alert 8 show tech Command 9 CHAPTER 4 Configuring Cisco Prime NAM 11 Configuring ERSPAN for Traffic Visibility 11 ERSPAN Overview 11 Configuring ERSPAN on the Cisco Nexus 1000V 12 Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 iii

Contents Configuring ERSPAN Data Source on the Cisco Prime NAM VSB 12 Sending ERSPAN Data Directly to the Cisco Prime NAM Management Interface 12 Configuring NetFlow for Traffic Visibility 13 Configuring NetFlow on Cisco IOS Routers 13 Configuring NetFlow Data Source on the Cisco Prime NAM for Nexus 1110 14 Testing NetFlow Devices 14 Configuring and Monitoring the Nexus Virtual Switch as a Managed Device 14 Setting Up the Managed Device Parameters 14 Monitoring the Managed Device Interfaces 17 CHAPTER 5 Troubleshooting 19 Resetting the Cisco Prime NAM Password 19 iv Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01

Preface This document contains information about installing and configuring Cisco Prime NAM (Prime NAM). Obtaining Documentation and Submitting a Service Request, page v Obtaining Documentation and Submitting a Service Request For information on obtaining documentation, using the Cisco Bug Search Tool (BST), submitting a service request, and gathering additional information, see What's New in Cisco Product Documentation, at: http:// www.cisco.com/c/en/us/td/docs/general/whatsnew/whatsnew.html. Subscribe to What's New in Cisco Product Documentation, which lists all new and revised Cisco technical documentation, as an RSS feed and deliver content directly to your desktop using a reader application. The RSS feeds are a free service. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 v

Obtaining Documentation and Submitting a Service Request Preface vi Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01

CHAPTER 1 Introduction Introduction, page 1 Introduction The Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 provides a virtualization technology that enables a Nexus 1110 appliance to host other services and applications. The Cisco Prime NAM 6.1 software is one such application that can be hosted on a Nexus 1110 appliance. The following table summarizes the tasks that you need to perform, and the sections in this guide which explains these tasks. Table 1: Installation Overview Task See... Review the installation requirements Installation Requirements, on page 3 Install Cisco Prime NAM Installing NAM Software on a Nexus 1110 Appliance, on page 5 Perform post-installation tasks Configuring Cisco Prime NAM, on page 11 Troubleshoot the installation (if required) Troubleshooting, on page 19 Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 1

Introduction Introduction Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide 2 OL-31775-01

CHAPTER 2 Installation Requirements This chapter describes the requirements that need to be met before you install Cisco Prime NAM. Nexus 1110 Virtual Services Appliance Requirements, page 3 Configuration Requirements, page 3 Nexus 1110 Virtual Services Appliance Requirements The Nexus 1110 appliance must have the following minimum resources available for use as a virtual blade: 2G RAM 53G disk space Configuration Requirements Before you begin the software installation, ensure that the devices have been physically installed and set up for the following: The Nexus 1110 appliance has network connectivity through an Ethernet interface and is accessible using the serial console. The Cisco Prime NAM 6.1 software image is available on the Nexus 1110 appliance. The Nexus 1110 appliance has adequate resources available to run Cisco Prime NAM 6.1. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 3

Configuration Requirements Installation Requirements Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide 4 OL-31775-01

CHAPTER 3 Installing NAM Software on the Nexus 1110 Appliance This chapter provides information about installing the Cisco Prime NAM 6.1 software on a supported Nexus 1110 appliance. Note If you ordered a Cisco Nexus 1110 with Cisco Prime NAM, the Cisco Prime NAM installation media may already be loaded on the appliance. The installation media consists of an ISO file in bootflash:/repository. If you have a Cisco Nexus 1110 without NAM software, and you want to add it, you will need to download it from Cisco.com to a local ftp or http server, and then install it using the command copy ftp://path/to/nam/nam.iso bootflash:/repository from the Nexus 1110 CLI. This chapter contains the following section: Installing NAM Software on a Nexus 1110 Appliance, page 5 Licensing, page 7 Installing NAM Software on a Nexus 1110 Appliance SUMMARY STEPS 1. Log in to the Nexus 1110 and enter virtual blade configuration mode: 2. List the contents of the repository to make sure the Prime NAM ISO image can be found under bootflash:/repository. 3. Enter the virtual service blade creation mode. 4. Enter the NAM configuration information. 5. The NAM VSB installation will begin. You can use the show virtual-service-blade summary command to see the installation in progress. 6. To view installation progress, log in to the NAM console. When the status says POWER ON, the installation is complete. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 5

Installing NAM Software on a Nexus 1110 Appliance Installing NAM Software on the Nexus 1110 Appliance DETAILED STEPS Step 1 Log in to the Nexus 1110 and enter virtual blade configuration mode: Example: Step 2 N1110-app# conf t List the contents of the repository to make sure the Prime NAM ISO image can be found under bootflash:/repository. Example: N1110-app(config)# dir bootflash:/repository... 153135104 Mar 20 09:37:17 2011 nam-version.iso... Usage for bootflash://sup-local 305664000 bytes used 3685715968 bytes free 3991379968 bytes total N1110-app(config)# Use the directory listing to enter the correct ISO file that contains the NAM media. In the example above, nam-version.iso is the filename. Step 3 Enter the virtual service blade creation mode. Example: Step 4 N1110-app(config)# virtual-service-blade NAM N1110-app(config-vsb-config)# Enter the NAM configuration information. Note The data VLAN is used for both management and data (packet) collection for the virtual NAM. In the example, it is VLAN3. Unlike the VSM, the virtual NAM does not inherit the management VLAN from the VSB. The IP address assigned to the NAM must be in the data VLAN. Example: Step 5 N1110-app(config-vsb-config)# virtual-service-blade-type new nam-app-<version>.iso N1110-app(config-vsb-config)# interface data vlan 3 N1110-app(config-vsb-config)# enable Enter vsb image:[nam-app-<version>.iso] Enter Management IPV4 address: 172.20.122.107 Enter Management subnet mask: 255.255.255.128 IPv4 address of the default gateway: 172.20.122.1 Enter IPV6 information?[y n]: [n] n Enter Hostname: nam-nx Setting Web user/passwd will enable port 80. Press Enter[y/n]:y Web User name: [admin] Web User password: admin N1110-app(config-vsb-config)# The NAM VSB installation will begin. You can use the show virtual-service-blade summary command to see the installation in progress. Example: Step 6 N1110-app(config-vb-config)# show virtual-service-blade summary To view installation progress, log in to the NAM console. When the status says POWER ON, the installation is complete. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide 6 OL-31775-01

Installing NAM Software on the Nexus 1110 Appliance Licensing Note The default password is root. Example: N1110-app# login virtual-service-blade nam Telnet escape character is '$'. Trying 127.1.0.18... Connected to 127.1.0.18. Escape character is '$'. Cisco Network Analysis Module nam.cisco.com login: root Password: Last login: Mar 20 15:18:47 2011 from dhcp-171-69-69-187.cisco.com on pts/2 Cisco Virtual Blade on Nexus Appliance (Nexus VB) (R200-1120402) Console, 5.1 Copyright (c) 1999-2014 by Cisco Systems, Inc. root@nam.cisco.com# Licensing The NAM software requires you to install a product license in the form of a text file. An evaluation license allows you to use the software for up to 60 days, but you will be unable to log in to the NAM GUI after the evaluation license expires. When using an evaluation license, the NAM login window indicates how many days remain before the evaluation license expires. Node-Locking Information The Cisco NAM license is used for one Nexus 1110 appliance. When you obtain the license for the appliance, the license is valid only for the appliance with the PID and SN you provide when you obtain the license. You can get the PID of the appliance using the show inventory CLI command. N1110-app# show inventory PID: N1K-674-K9 VID: 0 SN: KQEDKRON N1110-app# Obtaining a License To obtain a NAM Virtual Service Blade (VSB) license, go to the following URL: http://www.cisco.com/go/license Follow the instructions on this page to obtain a NAM VSB license file. You will need the appliance PID and SN to obtain the license file. After you enter the PID and SN or the Product Authorization Key, a license file will be sent to you by e-mail. Store this license file on an available FTP server. Use the license install command to install the license after the NAM software installation completes. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 7

Installing a License Installing NAM Software on the Nexus 1110 Appliance Installing a License To install a license file, use the install license command. See the next section, and the Network Analysis Module Command Reference Guide for more information about the install license command. The following is an example of the install license command: license install ftp://joseph@computer.com/bin/licenses/nam_vb_license.lic In this example, the install license command fetches the license file, NAM_VB_License.lic, from the directory /bin/licenses of the host computer.com. Licensing Commands This section describes NAM CLI commands used to install and manage the NAM VSB license. You can find more details about these commands in the Network Analysis Module Command Reference Guide. license install ftp://<username>@<host>/<path>/<licensefilename> Use the license install command to install a license file. show license Use the show license command to display license information for the evaluation license and permanent licenses. Obtaining Licensing Information This section describes how to obtain current licensing information for a Nexus 1110 appliance. You can obtain licensing information the following ways: About the NAM GUI When you click About in the upper right corner of the NAM GUI, a window displays the software and version installed and information about any license currently installed. If a permanent license is installed, the PID and SN of the Nexus 1110 appliance is also displayed. Audit Trail The audit trail records any license management activities as well as any modifications to the configuration and other system information. To view the audit trail, click Admin > Diagnostics, then click Audit Trail in the Contents menu. System Alert System Alerts record any alert generated by the NAM. There are system alert messages sent by the NAM as the days pass prior to the expiration of the Evaluation License. System alert messages are sent when there are 20, 15, 10, 5, 4, 3, 2, and 1 days remaining and again when the license expires. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide 8 OL-31775-01

Installing NAM Software on the Nexus 1110 Appliance Obtaining Licensing Information show tech Command The show tech CLI command contains a license information section that displays information about the license type and license status. You can also view the output of the show tech command from the NAM GUI by clicking Admin > Diagnostics > Tech Support. To locate the license information, search for licenseinfo. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 9

Obtaining Licensing Information Installing NAM Software on the Nexus 1110 Appliance Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide 10 OL-31775-01

CHAPTER 4 Configuring Cisco Prime NAM This chapter provides details about the post installation tasks that you might need to perform. Configuring ERSPAN for Traffic Visibility, page 11 Configuring NetFlow for Traffic Visibility, page 13 Configuring and Monitoring the Nexus Virtual Switch as a Managed Device, page 14 Configuring ERSPAN for Traffic Visibility Encapsulated Remote Switched Port Analyzer (ERSPAN) records provide an aggregate view of the network traffic. When enabled on the branch router or switch, the ERSPAN data source becomes available on the Cisco Prime NAM VSB. ERSPAN provides statistics for applications, hosts, and conversions. You can set up custom data sources for some specific interfaces. ERSPAN can be used to identify business critical applications hosted in the Data Center that are used in the branch. This chapter contains the following sections: ERSPAN Overview ERSPAN sessions allow you to monitor traffic on one or more ports, or one or more VLANs, and send the monitored traffic to one or more destination ports. ERSPAN sends traffic to a network analyzer such as a SwitchProbe device or other Remote Monitoring (RMON) probe. ERSPAN supports source ports, source VLANs, and destination ports on different routers, which provides remote monitoring of multiple routers across your network (see ). ERSPAN consists of an ERSPAN source session, routable ERSPAN GRE-encapsulated traffic, and an ERSPAN destination session. You separately configure ERSPAN source sessions and destination sessions on different routers. An ERSPAN source session is defined by the following: A session ID A list of source ports or source VLANs to be monitored by the session The destination and the origin IP addresses, which are used as the destination and source IP addresses of the GRE envelope for the captured traffic, respectively Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 11

Configuring ERSPAN on the Cisco Nexus 1000V Configuring Cisco Prime NAM An ERSPAN flow ID Optional attributes related to the GRE envelope such as IP TOS and TTL. For a source port or a source VLAN, the ERSPAN can monitor ingress, egress, or both ingress and egress traffic. ERSPAN source sessions do not copy ERSPAN GRE-encapsulated traffic from source ports. Each ERSPAN source session can have either ports or VLANs as sources, but not both. The ERSPAN source sessions copies traffic from the source ports or source VLANs and forwards the traffic using routable GRE-encapsulated packets to the ERSPAN destination session. The ERSPAN destination session switches the traffic to the destination ports. Configuring ERSPAN on the Cisco Nexus 1000V Configure ERSPAN traffic on the Branch edge router. You must enable ERSPAN on both the WAN and LAN interface to provide visibility into traffic flows entering and leaving the branch. Refer to Configuring Local SPAN and ERSPAN in the Cisco Nexus 1000V System Management Configuration Guide, Release 4.2(1) SV1(4) Configuring ERSPAN Data Source on the Cisco Prime NAM VSB You must configure ERSPAN on the Cisco Prime NAM VSB so that the Prime NAM receives data. See the Sending ERSPAN Data Directly to the Cisco Prime NAM Management Interface, on page 12 about using ERSPAN as a data source: Note Depending on the NX-OS version on your managed device, the CLI format for configuring an ERSPAN session may be different than what appears in this document. For details on using ERSPAN as a data source, see your specific OS product documentation. Sending ERSPAN Data Directly to the Cisco Prime NAM Management Interface To send the data directly to the Cisco NAM management IP address (management-port), configure the ERSPAN source session. No ERSPAN destination session configuration is required. After performing this configuration on the Catalyst 6500 switch, when ERSPAN packets are sent to the NAM, it will automatically create a data source for that packet stream. If the autocreate feature is not enabled, you will have to manually create the data source for this ERSPAN stream of traffic. See the Forwarding ERSPAN Traffic section Customizing Cisco Prime NAM chapter in the Cisco Prime NAM 6.1 User Guide for detailed procedures. Note This method causes the ERSPAN traffic to arrive on the Cisco Prime NAM management port. If the traffic level is high, this could have negative impact on the Cisco Prime NAM s performance and IP connectivity. This might also have an impact on the general network performance. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide 12 OL-31775-01

Configuring Cisco Prime NAM Configuring NetFlow for Traffic Visibility Sample Configuration monitor session 1 type erspan-source no shut source interface Fa3/47 destination erspan-id Y ip address aa.bb.cc.ddorigin ip address ee.ff.gg.hh Where: Interface fa3/47 is a local interface on the erspan-source switch to be monitored Y is any valid span session number aa.bb.cc.dd is the management IP address of the Cisco Prime NAM ee.ff.gg.hh is the source IP address of the ERSPAN traffic Configuring NetFlow for Traffic Visibility NetFlow records provide an aggregate view of the network traffic. When enabled on the branch router or switch, the NetFlow data source becomes available on the Cisco Prime NAM. NetFlow provides statistics for applications, hosts, and conversations. You can set up custom data sources for some specific interfaces. NetFlow can be used to identify business critical applications hosted in the Data Center that are used in the branch. As a consumer, the Cisco Prime NAM can receive NetFlow packets on its management port from devices such as Cisco routers and switches. Those records are stored in its collection database as if that traffic had appeared on one of the Cisco Prime NAM data ports. The Cisco Prime NAM understands NetFlow v1, v5, v6, v7, v8, and v9. See the following sections: Configuring NetFlow on Cisco IOS Routers, on page 13 Configuring NetFlow Data Source on the Cisco Prime NAM for Nexus 1110, on page 14 Testing NetFlow Devices, on page 14 Configuring NetFlow on Cisco IOS Routers Configure NetFlow traffic on the Branch edge router. You must enable NetFlow on both the WAN and LAN interface to provide visibility into traffic flows entering and leaving the branch. config t interface <interface> ip route-cache flow exit ip flow-export version 5 ip flow-export destination <NAM-Ip-Address> 3000 Note The UDP port number must be set to 3000. You can change this using the NAM CLI. See the Cisco Prime Network Analysis Module Command Reference Guide Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 13

Configuring NetFlow Data Source on the Cisco Prime NAM for Nexus 1110 Configuring Cisco Prime NAM Also make sure the SNMP community string is configured on the device. Read Only or Read Write community string works. snmp-server community <RO-string> RO Configuring NetFlow Data Source on the Cisco Prime NAM for Nexus 1110 See the Customizing Cisco Prime NAM chapter in the Cisco Prime NAM User Guide available at http:// www.cisco.com/c/en/us/support/cloud-systems-management/prime-network-analysis-module-software/ products-user-guide-list.html, for detailed procedures. Testing NetFlow Devices You can test the SNMP community strings for the devices in the Devices table. To test a device, select it from the Devices table under Setup > Traffic > NAM data Sources, then click Edit. Enter the parameters and click Test Connectivity. Configuring and Monitoring the Nexus Virtual Switch as a Managed Device A managed device is a switch from which you would like to gather information such as interface statistics. For Nexus virtual networks, virtual interfaces statistics will provide insight into your virtual network. Cisco Prime NAM supports only one managed device and Nexus 1110 only supports one Cisco Prime NAM Virtual Blade as primary. Setting Up the Managed Device Parameters When you set up a managed device, the Cisco Prime NAM retrieves interface information via SNMP from that managed device and displays statistics. For Cisco Prime NAM on Nexus VSB, you should set these parameters to point to a Nexus 1000v switch. To view the switch information, choose Setup > Managed Device > Device Information. Table 2: Switch Information Field SNMP Test information Name Hardware Supervisor Software Version System Uptime Description Displays the IP address of the Cisco Prime NAM and the switch that the SNMP test occurred on. Name of the switch. Hardware description of the switch. Current software version of the Supervisor. Total time the switch has been running. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide 14 OL-31775-01

Configuring Cisco Prime NAM Setting Up the Managed Device Parameters Field Location Contact SNMP read from switch SNMP write to switch Mini-RMON on switch NBAR on switch VLAN Traffic Statistics on Switch NetFlow Status Description Physical location of the switch. Contact name of the network administrator for the switch. SNMP read test result. SNMP write test result. For Cisco IOS devices, displays the status if there are any ports with Mini-RMON configured (Available) or not (Unavailable). Displays if NBAR is available on the switch. Displays if VLAN data is Available or Unavailable. Note Catalyst 6500 Series switches require a Supervisor 2 or MSFC2 card. For Catalyst 6500 Series devices running Cisco IOS, if NetFlow is configured on the switch, Remote export to Cisco Prime NAM <address> on port <number> displays, otherwise the status will display Configuration unknown. This section describes how to set router/managed device parameters. SUMMARY STEPS 1. Choose Setup > Managed Device > Device Information. 2. Click the Test Connectivity button to perform an SNMP test. Click Close when finished. 3. Click Submit to submit the information and close the window. DETAILED STEPS Step 1 Choose Setup > Managed Device > Device Information. The Router System Information displays as shown in the following table. Some of the fields below may not be available when using a Nexus 1000V as a managed device. Table 3: Router/Managed Device System Information Field Name Description Name of the router. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 15

Setting Up the Managed Device Parameters Configuring Cisco Prime NAM Field Hardware Managed Device Software Version Managed Device System Uptime Location Contact Managed Device SNMP v1/v2c RW Community String Verify String Enable SNMP V3 Mode: No Auth, No Priv Mode: Auth, No Priv Mode: Auth and Priv User Name Auth Password Auth Algorithm Privacy Password Privacy Algorithm Description Hardware description of the router. Current software version of the router. Total time the switch has been running. Physical location of the router. Name of the network administrator for the router. IP address of the router. Name of the SNMP read-write community string configured on the router Verify the SNMP. Check the check box to enable SNMP Version 3 (starting with NAM 5.0, you have the ability to manage devices with SNMPv3). If SNMPv3 is not enabled, the community string is used. SNMP will be used in a mode with no authentication and no privacy. SNMP will be used in a mode with authentication, but no privacy. SNMP will be used in a mode with both authentication and privacy. Enter a username, which will match the username configured on the device. Enter the authentication password associated with the username that was configured on the device. Verify the password. Choose the authentication standard which is configured on the device (MD5 or SHA-1). Enter the privacy password, which is configured on the device. Verify the password. Enter the privacy algorithm, which is configured on the device (AES or DES). Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide 16 OL-31775-01

Configuring Cisco Prime NAM Monitoring the Managed Device Interfaces Step 2 Step 3 Click the Test Connectivity button to perform an SNMP test. Click Close when finished. Click Submit to submit the information and close the window. Monitoring the Managed Device Interfaces Monitoring the managed device interfaces provides per-interface statistics directly from the Nexus switch. Go to the Analyze > Managed Device > Interfaces. To change the interval, go to the Interactive Report on the left side of the screen and click the Filter button. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 17

Monitoring the Managed Device Interfaces Configuring Cisco Prime NAM Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide 18 OL-31775-01

CHAPTER 5 Troubleshooting This chapter describes some common problems that occur while setting up the Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110. Resetting the Cisco Prime NAM Password, page 19 Resetting the Cisco Prime NAM Password Step 1 From the Cisco Prime NAM CLI, execute this command: reboot -helper Step 2 You will be prompted for Y/N verification that you want to reboot. Click Y, and the Cisco Prime NAM will boot into the helper image and display the menu. ===================================================== Cisco Systems, Inc.Network Analysis Module (NAM) helper utility Version 6.1 ----Main menu 1 - Download application image and write to HDD 2 - Download application image and reformat HDD 3 - Install application image from CD 4 - Display software versions 5 - Reset application image CLI passwords to default 6 - Change file transfer method (currently ftp/http) 7 - Send Ping n - Configure network r - Exit and reset Services Engine h - Exit and shutdown Services Engine Selection [1234567nh]: Step 3 At the helper menu, pick 5, Reset application image CLI passwords to default. Step 4 Click r to reset the Cisco Prime NAM. Step 5 After the Cisco Prime NAM boots back up, you will need to reset the default password when logging in as root. Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide OL-31775-01 19

Resetting the Cisco Prime NAM Password Troubleshooting Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide 20 OL-31775-01

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback