NAT & Source/Destination IP
Testing and successfully configured NetFlow Analyzer to collect NetFlow and NBAR from our 2611XM. My goal is to get in depth info re internet traffic of LAN IPs <-> internet source/destinations. However, because of NAT on our PIX 515e, packets show only our public IPs, which in the case of workstations is a single [gobal outside] IP address, making the accounting useless for my goal. I was hoping that by monitoring both the outside interface and inside interface, we would be able to see the full translated route. However, since the translation is done at the PIX, behind the router, that's obviously not possible.
So what is the best technique for doing this? I assume I should be monitoring the PIX instead, but unfortunately the PIX doesn't support NetFlow. Am I missing something? Thanks
New to ADSelfService Plus?