Cisco Cisco AnyConnect Secure Mobility Client v2.x Technical Manual
IPFIX is an IETF protocol to define a standard for exporting IP flow information for various
purposes like accounting/auditing/security. IPFIX is based on Cisco NetFlow protocol v9, though
not directly compatible.
purposes like accounting/auditing/security. IPFIX is based on Cisco NetFlow protocol v9, though
not directly compatible.
Cisco vzFlow is a protocol specification extended based on the IPFIX protocol. IPFIX doesn’t
have enough standard Information Elements to support all the parameters can be collected as part
of AC NVM. Cisco vzFlow protocol extends the IPFIX standard and defines new Information
Elements as well as defines a standard set of IPFIX templates that will be used by AC NVM for
exporting IPFIX data.
have enough standard Information Elements to support all the parameters can be collected as part
of AC NVM. Cisco vzFlow protocol extends the IPFIX standard and defines new Information
Elements as well as defines a standard set of IPFIX templates that will be used by AC NVM for
exporting IPFIX data.
,
,
.
IPFIX Collector
A collector is a server that receives and stores IPFIX data. It can then feed this data to Splunk. Eg.
Lancope.
Lancope.
Cisco also provide its home-grown IPFIX collector.
Splunk
Splunk is a powerful tool that collects and analyses diagnostic data to give meaningful information
about the IT infrastructure. It provides a one-stop location for administrators to collect data that is
crucial in understanding the health of the network.
about the IT infrastructure. It provides a one-stop location for administrators to collect data that is
crucial in understanding the health of the network.
Splunk is not owned or maintained by Cisco Systems, however Cisco provides Cisco AnyConnect
NVM App for Splunk.
NVM App for Splunk.
For more information regarding Spunk, please visit their website.
Topology