NOTE!!!!!!!

Please refer Cisco Network Visibility Module Collector Administrator guide for supported configuration entries. The configuration file is expected to be a valid JSON file.

In case of a fresh install, change configuration settings appropriately. In case of upgrade, existing configuration will be retained.

For fresh install the acnvm.conf file needs to be edited. Here is a list of the entries and their meanings:

Entry: syslog_server_ip
Description: The value should be the IP address of the destination for syslog messages (possibly the destination address of the splunk server). The IP address should appear in quotes as is indicated by the example entry.

Entry: syslog_flowdata_server_port
Description: The value should be the UDP port on which the syslog server with IP <syslog_server_ip> is configured to listen for flowdata traffic. The default UDP port for flowdata in the Cisco AnyConnect Network Visibility Module (NVM) App for Splunk is 20519.

Entry: syslog_sysdata_server_port
Description: The value should be the UDP port on which the syslog server with IP <syslog_server_ip> is configured to listen for sysdata traffic. The default UDP port for sysdata in the Cisco AnyConnect Network Visibility Module (NVM) App for Splunk is 20520.

Entry: syslog_intdata_server_port
Description: The value should be the UDP port on which the syslog server with IP <syslog_server_ip> is configured to listen for intdata traffic. The default UDP port for sysdata in the Cisco AnyConnect Network Visibility Module (NVM) App for Splunk is 20521.

Entry: netflow_collector_port
Description: The UDP port of the NetFlow Collector. This is the port where the collector listens for any IPFIX traffic from endpoints. The default is 2055.

Entry: log_level
Descriptiom: Any value between 0 and 7.

After editing the acnvm.conf file execute the install.sh script (as root) which will copy the relevant files to the /usr/local/bin, usr/local/lib and /etc directories as well as creating a startup daemon script called acnvmcollectord in the /etc/init.d directory.

The log meesages can be found in /var/log/syslog
If there are no error messages when executing install.sh, check /var/log/syslog for acnvmcollector status.

The acnvmcollector service can be started, stopped and queried using:
/etc/init.d/acnvmcollectord start
/etc/init.d/acnvmcollectord stop
/etc/init.d/acnvmcollectord status

