1 hour 43 minutes
welcome everyone in this lab. We will be looking into configuring basic net flow on router zero A. M s has many different features for monitoring, which includes its own that flow collector and analyzer.
Let's start off by configuring rather zero interface that will be monitored with that flow.
The interface can be configured in either ingress or egress directions.
In actual operations, you can verify which interfaces up by using the show I p interface Brief command.
Let's open up further zero
and verify which in their face we could use for a net flow. So it's a show i p interface
And as he can see fast, Ethan, A 00 is in the up upstate with a configured I p of five. That one or 19 to 1 succeed if either one to be exact.
So let's head over to the interface configure terminal
in her face
Fast, Ethernet zero or interface. If a
All right, So the command here would be
I p flow ingress
and I p fellow egress.
All right, let's verify this show. Run,
all right, because he has been configured Great.
Now let's configure around zero to send the flow records so than that flow collector
in this case, Server Zero.
In this packet, trace of version six point to the server uses you the P port and then in six for its net flow collection software. So we'll just follow this to get the configuration working properly
in actual network operations, However, you may decide to use a different port number, which can be adjusted in your animus.
All right, let's configure it right now.
Configured Terminal Convict E
and the commanders I p flow
The destination server I p is 19 to 168 thought five
and the port number would be 9996
All right, and see what first then we can export with
Okay, so let's just use version nine.
now let's head over to our server to make sure that the Netflix collection is enabled.
Right? Let's open the server.
that flow collector. All right, let's enable this. Just keep this up and let's add in some traffic to run on Brother Zeros. Interface fast. Ethan at 00
All right, so currently, PC zero p c one doesn't have any i p. Addressing
So let's configure the teepee on Rodeo zero.
All right? I p D c p. Cool.
Let's call it test
that we're quitting to one succeed Final 02 lives. That zero
default router wanting to once exceed the 51
And let's just add in the Dina Server
Let's close this up for the meantime, but before that, let's save the configurations.
Copy. Run, start.
Okay, let's open up. PC zero.
Check the I P configurations.
All right, That's good.
It's close at it.
Let's do a quick pink tests to the
And that's also open the
PC's PC one.
All right, you can see there this some traffic
being shown that then that were collector
streets like this. Okay. Searched from five to which was P. C. Zero.
And as you can see all the information here,
let me drink this down a little bit.
So this basically resulted from
the ping and the CPI that we enabled.
All right, let's continue to PC one.
let's enable to D c p.
All right. So it's 53 this time.
And let's do another pink test
I looked a bit
all right for the to
you see there for that, too.
That's probably the pink tests that we did earlier.
And from 53 as well.
it's also worse to note another command you can verify on rather zero. So let's head over. Back to
Okay, so this one's actually something we can
verify. Show I pdc binding.
Okay, So basically, for this ping conflict is because I x I forgot to include in another command, which is
the excludes command
address. And the start would be, Let's see
for the one
for the 10
copier and start.
So since I include the excluded command
from 512 for the tents. So if we were to renew the i p addressing from PC zero, for example,
and make it TCP, you would be starting from 5 11 as you can see there
All right, So the other command and as he gets here as well from the net flow
probably another D c. P. Request.
And yes. And another command you can verify is show I P
so you can see there. ICMP The pink tests were did earlier and the a c p
So this but being a very simple configuration is very exciting to see how it works.
And there's basically if for our demo.
Penetration Testing and Ethical Hacking
The Penetration Testing and Ethical Hacking course prepares students for certifications, like CEH. This course ...
7 CEU/CPE Hours Available
Certificate of Completion Offered
CompTIA Security+ 501
Empower yourself as a security professional by gaining the fundamental knowledge for securing a network ...