Delaying flow-create events, Disabling and reenabling netflow-related syslog – Cisco ASA 5505 User Manual

Page 1773

Advertising
background image

78-9

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 78 Configuring NetFlow Secure Event Logging (NSEL)

Configuring NSEL

What to Do Next

See the

“Delaying Flow-Create Events” section on page 78-9

.

Delaying Flow-Create Events

To delay the sending of flow-create events, enter the following command:

What to Do Next

See the

“Disabling and Reenabling NetFlow-related Syslog Messages” section on page 78-9

.

Disabling and Reenabling NetFlow-related Syslog Messages

To disable and reenable NetFlow-related syslog messages, perform the following steps:

Command

Purpose

flow-export delay flow-create

seconds

Example:

hostname (config)# flow-export delay flow-create 10

Delays the sending of a flow-create event by the specified
number of seconds. The seconds argument indicates the
amount of time allowed for the delay in seconds. If this
command is not configured, there is no delay, and the
flow-create event is exported as soon as the flow is created. If
the flow is torn down before the configured delay, the
flow-create event is not sent; an extended flow teardown event
is sent instead.

Command

Purpose

Step 1

logging flow-export-syslogs disable

Example:

hostname(config)# logging flow-export-syslogs

disable

Disables syslog messages that have become
redundant because of NSEL.

Note

Although you execute this command in
global configuration mode, it is not stored in
the configuration. Only the no logging
message
xxxxxx commands are stored in the
configuration.

Step 2

logging message

xxxxxx

Example:

hostname(config)# logging message 302013

Reenables syslog messages individually, where
xxxxxx is the specified syslog message that you want
to reenable.

Step 3

logging flow-export-syslogs enable

Example:

hostname(config)# logging flow-export-syslogs enable

Reenables all NSEL events at the same time.

Advertising