
Applying [NetFlow](/netflow) to an [SVI](/vlans-svi) has several pros and cons compared to its application on a physical interface:

* If you deploy it on an SVI, you can monitor and analyze the aggregated traffic from multiple physical interfaces associated with the same [VLAN](/vlan).
- NetFlow on an SVI can also monitor and analyze traffic flowing between different VLANs, which is useful for understanding communication patterns between subnets.
- By configuring NetFlow on an SVI, you reduce the number of NetFlow instances needed, since you need only one instance per VLAN rather than one instance per interface, thus you use fewer resources.
- However, NetFlow on an SVI will only monitor traffic that is destined to or comes from other subnets. You won’t be able to monitor traffic within the VLAN itself, since such traffic would go directly between hosts and would not traverse the SVI.

If you apply NetFlow to physical interfaces, then:

- You have more visibility to traffic that goes between hosts on the same VLAN
- This becomes more resource intensive and complex since you have more NetFlow configurations to perform and more NetFlow sessions (one per configured physical interface), making it less scalable and more challenging to manage.

Links:

https://forum.networklessons.com/t/introduction-to-cisco-netflow/1278/75?u=lagapides

https://networklessons.com/cisco/ccie-routing-switching/introduction-to-cisco-netflow/

NetFlow - applying to an SVI

Multicast PIM with multiple mapping-agents

Multicast PIM-assert forwarder election

Multicast SPT and RPT

Multicast bidirectional PIM advantages

Multicast boundary filtering - filter auto RP

Multicast enabling Bidir in BSR mode

Multicast ip pim autorp listener

Multicast ip pim rp-address override

Multicast load splitting across equal-cost paths

Multicast local subnetwork address range

Multicast mapping IP to MAC addresses

Multicast mapping agent IGMP membership report

Multicast ping on a Nexus device

Multicast using Anycast RP with Auto-RP and BSR

Multicast

NAT - Translation Table

NAT - Twice NAT

NAT - Understanding debug nat detailed output

NAT - Virtual Interface (NVI)

NAT - What is Policy NAT

NAT - add-route keyword

NAT - ports used for translation

NAT - show NAT translations

NAT - translate address not directly connected to edge device

NAT Extendable on Cisco IOS

NAT Order of Operation

NAT address naming conventions

NAT and IPv6

NAT how port numbers are chosen when using PAT

NAT intra-VRF NAT

NAT port forwarding - specifying outside IP address

NAT prefix-length keyword on nat pool command

NAT vrf-aware

NBAR classifies only established sessions

NETCONF

NHRP - Authentication

NHRP - Destination Protocol Address

NHRP - Holding Time

NHRP - resolution redirect from hub

NHRP show ip nhrp flags

NHRP

NTP - securing with MD5 authentication and a Windows NTP server

NTP poll interval

NTP server and client and the master command

NTP troubleshooting and debugging tools

NTP versions 3 and 4

Native VLANs and untagged frames

NetFlow - Flexible NetFlow

NetFlow - Flow Samplers

NetFlow - what is a flow

NetFlow local cache size

NetFlow

Network - Discontiguous or Discontinuous

Network - Discontiguous

Network - Example of communication, encapsulation, and decapsulation, between hosts

Network - Flapping

Network - Layer 2 network

Network - Layer 3 network

Network - Monitoring multiple IPs of a single device with Observium

Network - Observium vs LibreNMS

Network - Simultaneous network traffic handling

Network - Transient traffic

Network - Two Way Active Measurement Protocol (TWAMP)

Network - broadcast domain

Network - control plane

Network - data plane

Network Address Translation (NAT)

Network Collisions

Network Design - Choosing a technology for multiple datacenter topology

Network Design - Load Balancing vs Load Sharing

Network Design - Spine and leaf architecture

Network Design - Switch oversubscription ratios

Network Design - Traffic Engineering

Network Design - on-premises and off-premises

Network Time Protocol (NTP)

Network design - confine VLANs to as few access switches as possible

Network planes

Networking - Understanding Chassis devices

Networking - what is a socket

Networks - Overlay Network

Networks - Overlay Transport Virtualization (OTV)

Networks - Spanning Layer 2 networks across remote sites

Networks - Underlay Network

Next Generation Multicast Virtual Private Network (NG-MVPN)

Nexus - using vPC with HSRP

Nexus - what is vPC

Nexus lacp rate fast

Nexus

OSI Model

OSPF - A comparison with IS-IS

OSPF - ABR has at least one interface in Area 0

OSPF - Adjacencies in a Multi-Access network segment

OSPF - Adjacency Between NBMA and P2MP Non-Broadcast Networks

OSPF - Advertising point to multipoint networks

OSPF - Area Border Router (ABR)

OSPF - BDR is elected before DR

OSPF - Cost of summarized routes

OSPF - DR-BDR election per broadcast domain

OSPF - DR-BDR election priority of zero