What is this?

This knowledgebase contains questions and answers about PRTG Network Monitor and network monitoring in general.

Learn more

PRTG Network Monitor

Intuitive to Use. Easy to manage.
More than 500,000 users rely on Paessler PRTG every day. Find out how you can reduce cost, increase QoS and ease planning, as well.

Free Download

Top Tags

View all Tags

Encryption on netflow v9 with Cisco ASA firewalls



Hello I have some sites that I monitor with this wonderful product, and I wanted to know since I will be back hauling data from my various sites back to my network, will this data be encrypted? I don't want to move these data packets and or Netflow Security Event Loggs over the internet un encrypted. Is there a way to fix this or is there something that I am missing?

5510 asa-firewall cisco-asa-5510 ciscoasa encryption netflow prtg

Created on May 6, 2015 8:16:57 PM

2 Replies

Accepted Answer



Only Flexible Netflow allows netflow traffic that originates at the router to be encrypted over a IPSec VPN, normal Netflow traffic cannot be encrypted. What you could do is set up a remote probe in the same network segment as the router and have the router send the flows directly to that remote probe internally without sending the information over the internet. The traffic between our Core and the Remote Probes is encrypted so that shouldn't be a worry.

Created on May 8, 2015 1:01:53 PM by  Greg Campion [Paessler Support]



Thank you, taking into account that I will be dealing solely with Cisco ASA 5500 series Firewalls, I will only be dealing with "Netflow Security Event Logging". That being said I found another post on your Knowledge Base that Directly ties into this.


Created on May 8, 2015 1:28:20 PM

Disclaimer: The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.