5. CISCO Catalyst 9300 DNA Advantage – AVC/NBAR2 Application Visibility
AVC has NBAR2(Application, URL, ART), EMC, and QoS
flow record flow_input #simple version
match application name
match connection client ipv4 address
match flow observation point
collect connection client counter packets long
collect connection client counter bytes network long
collect connection server counter packets long
collect connection server counter bytes network long
collect timestamp absolute first
collect timestamp absolute last
flow record flow_input
match ipv4 version
match ipv4 protocol
match application name
match connection client ipv4 address
match connection server ipv4 address
match connection server transport port
match flow observation point
collect flow direction
collect connection initiator
collect connection client counter packets long
collect connection client counter bytes network long
collect connection server counter packets long
collect connection server counter bytes network long
collect timestamp absolute first
collect timestamp absolute last
collect connection new-connections
flow exporter 192.168.102.100
destination 192.168.102.100
option application-table timeout 30
flow monitor avc_input
record flow_input
exporter 192.168.102.100
cache timeout active 60
cache timeout inactive 60
int gi 1/0/2
ip flow monitor avc_input input
#ManageEngine Monitoring AVC
https://www.manageengine.com/products/netflow/cisco-avc-monitoring.html
#Cisco AVC Configuration
https://www.cisco.com/c/en/us/td/docs/ios/solutions_docs/avc/guide/avc-user-guide/avc_config.html
#Configuring Application Visibility and Control for Flexible Netflow
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/fnetflow/configuration/xe-3s/cfg-avc-xe.html
#System Management Configuration Guide, Cisco IOS XE Fuji 16.8.x
https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9300/software/release/16-8/configuration_guide/sys_mgmt/b_168_sys_mgmt_9300_cg/b_168_sys_mgmt_9300_cg_chapter_0100.html
ipv4