Cisco MediaNet Netflow Configuration steps for NetProfiler visibility.
Issue
Solution
Enable MediaNet Performance Monitor
IMPORTANT: If you are going to enable medianet, best to disable basic flow above (otherwise redundant and confusing), NetProfiler ONLY supports the Packet Loss and Jitter metrics via Netflow and Jitter metrics via IPFIX. The below 3rd-party configuration is just a sample (that may include additional fields that NetProfiler will not utilize) and we recommend that you refer to vendor specific documentation. Check the text "(Accepted by NetProfiler)" for the fields that NetProfiler supports.
Prerequisites:
Ensure supported IOS
So how do you know if your router supports it?
The quickest way to find out if a router meets the requirements is to check the Cisco Feature Navigator. Filter on performance monitor, then add the Performance Monitor (Phase 1) feature and click Continue.
This will allow you to choose your device to further investigate. You are given a list of IOS versions that support this feature and the memory/flash required to run it.
Does the current IOS version support Performance monitoring? 15.1.3(T) is not enough. It must be a build with support (e.g. Advanced Enterprise Services).
There are 4 things you need to check on your router:
- Does the router meet the minimum RAM requirements for Performance monitoring or does it require an upgrade?
- Does the router meet the minimum Flash requirements?
- If the router is a second generation router, does it have the data license installed?
Important IOS CLI commands to help answer the above questions:
Show version - This will give you the version of IOS that is running. It will also contain the amount of RAM installed on the router.
Show flash - This will give you a listing of what is on the local flash and how much flash is installed.
Show License -This will tell you if a license is in use or not.
license boot module c1900 technology-package datak9 - In config mode, this installs the data license on routers 88x,89x,19xx,29xx,39xx series ISRs. The portion in red may be different on different routers. Requires a reboot.
Okay, so you've gone through all this and found that yes, your router does support the Medianet Performance Monitor.
So what next?
Well, with Cisco's Performance Monitor and a NetFlow Analyzer that supports it, you can now analyze voice, video, and data traffic and report on loss, latency and jitter, providing the depth of information NetFlow has been providing for other applications as well.
Network-based application discovery is Cisco's way to recognize certain common applications by inspecting the packet headers. For example, with nbar enabled, a Cisco router will identify an RTP packet/flow as opposed to thinking it is just some UDP packets.
Enable NBAR protocol discovery
interface g0/0
ip nbar protocol-discovery
Best to do either basic or medianet, shouldn't need to do both or will be redundant.
Step 1. Define the Exporter
The exporter is used by the flow monitor tag (export-to-profiler) and gives more details about the destination IP, port, source port, etc.
! Medianet Flow Exporterflow exporter netprofiler
description medianet flow to netprofiler
destination profiler IP
source Vlan primary VLAN
transport udp 2055
template data timeout 60
option interface-table
option exporter-stats
option application-tableStep 1a (Optional). Define the custom flow record
You can create a custom flow record definition or use the default (default-rtp) The match keywords tell it what are key fields meaning when to create a unique flow. In the example below, if the match <blah> are the same, it's a single flow. Once it finds a flow, the exporter tells it how often to perform measurements and export.
! Create custom record for medianet export
flow record type performance-monitormymedianetrecord
! Use match to identify which attributes denote a unique flow
match ipv4 protocol
match ipv4 source address
match ipv4 destination address
match transport source-port
match transport destination-port
! define what metrics to collect(Accepted by NetProfiler)
collect routing forwarding-status
collect ipv4 dscp
collect ipv4 ttl
collect ipv4 source mask
collect ipv4 destination mask
collect transport packets expected counter
collect transport packets lost counter >>>>>> (Accepted by NetProfiler)
collect transport packets lost rate
collect transport round-trip-time
collect transport event packet-loss counter
collect transport rtp jitter mean >>>>>>
collect transport rtp jitter minimum
collect transport rtp jitter maximum
collect interface input
collect interface output
collect counter bytes
collect counter packets
collect timestamp interval
collect application media bytes counter
collect application media byptes rate
collect application media packets counter
collect application media packets rate
collect application media event
collect monitor event
Step 2. Define the Flow Monitor
The monitor tells it which record type to use and where to export the results. You will still need to apply it to an interface to work.
flow monitor type performance-monitor mymedianetmonitor
description monitor performance of media
record mymedianetrecord (or use record default-rtp)
exporter netprofiler
!
Step 3. Create a Policy Map
A Policy map connects the monitor (recall this binds the record and exporter) to the class. The policy map is what is applies to an interface.
You can and should use the previously defined classes created (for QoS) to match VoIP traffic.
policy-map type performance-monitor mymedianetpolicy
class VOICEflow monitor mymedianetmonitorclass VIDEOflow monitor mymedianetmonitorclass VOIP-SIGNALflow monitor mymedianetmonitorclass VIDEOflow monitor mymedianetmonitorclass TELEPRESENCEflow monitor mymedianetmonitor
monitor metric rtp
clock-rate 96 48000
clock-rate 101 8000Step 4. Apply Policy to Interfaces
Apply to each interface in input direction
interface g0/0ip nbar protocol-discovery <-- tells the router to figure out what applications are in use (e.g. RTP)service-policy type performance-monitor input mymedianetpolicy
Step 5: Verify working
sh policy-map interface OR
sho policy-map type performance-monitor interface
sh flow exporter netprofiler statistics
sho performance monitor cache detail | inc 10.35.201.173 <-- can verify it is seeing the traffic and creating a flow record
-------------- Full Configuration Example (red need to be adjusted) --------------
ip flow-cache timeout active 1
ip cef
! Define the exporter
flow exporter netprofilerdescription flow to netprofilerdestination 10.35.200.230source Vlan1transport udp 2055template data timeout 60option interface-tableoption exporter-statsoption application-table!! Define the monitor and bind to exporter
flow monitor type performance-monitor mymedianetmonitordescription used for medianet monitoringrecord default-rtpexporter netprofiler! Define classes for each VoIP type
class-map match-any TELEPRESENCEmatch protocol telepresence-mediaclass-map match-any VOIP-SIGNAL
match protocol rtcpmatch protocol skinnymatch protocol sipmatch protocol h323match protocol mgcpmatch dscp af31match ip dscp cs3class-map match-all VIDEO
match dscp af41match protocol rtp videoclass-map match-all VOICE
match protocol rtp audio! Define the Policy
policy-map type performance-monitor mymedianetpolicyclass VOICEflow monitor mymedianetmonitorclass VOIP-SIGNALflow monitor mymedianetmonitorclass VIDEOflow monitor mymedianetmonitorclass TELEPRESENCEflow monitor mymedianetmonitormonitor metric rtpclock-rate 96 48000clock-rate 101 8000! Apply to the interface
interface GigabitEthernet0/0ip nbar protocol-discoveryservice-policy type performance-monitor input mymedianetpolicyservice-policy type performance-monitor output mymedianetpolicy
Related Bugs
Attachments
