Highest Voted 'netflow' Questions - Server Fault Stack Exchange

1

vote

1 answer

Netflow to syslog converter

Is there any way to have netflow v9 converted to syslog? Which would be the best way to have the following idea working? Procedure: The router sends UDP with the following structure: templateId=259: id=259, fields=11 field id=8 (ipv4 source…

network-monitoring syslog netflow

asked Feb 01 '13 at 10:31

Marc Riera

1,587
4
21
38

1

vote

1 answer

NetFlow Storage Calculator

I am planning to deploy a NetFlow server (using NfSen/NfDump) for harvesting data from Cisco devices; Are there standard calculations or guidelines I can use to calculate my server requirements, specifically I need to plan for storage. Is there a…

linux cisco netflow

asked May 29 '12 at 15:57

jwbensley

4,122
11
57
89

1

vote

1 answer

How come the netflow data isn't showing up on the server?

I have a mikrotik router and it is sending trafficflow (fully compatible with netflow) data to my debian server that is running cacti. But after installing cacti's flowviewer plugin, cacti doesnt show any information. The directory I made on the…

cacti mikrotik netflow

asked Feb 08 '12 at 00:42

karmet

209
1
2
14

1

vote

3 answers

Have NetFlow show true destinations

Currently NetFlow is showing destination (of inbound traffic) as our outside IP rather than inside IP. Also, for all outbound traffic, it is showing the source as our firewall rather than workstations. Any ideas about how to find the true…

cisco netflow

asked Jun 04 '10 at 20:34

DeliriumTremens

27
1
6

0

votes

1 answer

Palo Alto and nfdump: No matched flows

I am new to netflow so maybe I have the problem is about understanding, but I have not found references on what is happening. I have a Palo Alto PA500 firewall and I am trying to extract netflow statistics to an Ubuntu box with nfdump. I have…

netflow palo-alto-networks

asked Oct 10 '19 at 10:56

jordi

101
3

0

votes

0 answers

IPFIX Flows from OVS Linux Bridge are not accurate

I’m struggling to understand my IPFIX flow data. To explain: I have an Ubuntu (16.04.2 LTS Xenial Xerus) box, and within that box, I have a single Linux bridge: root@Ubuntu1:~# ovs-vsctl show 527530c2-6f42-498f-92a6-67dc43d931bc Bridge…

ubuntu netflow

asked May 16 '19 at 19:01

Pete

111
3

0

votes

2 answers

Monitoring traffic using Netflow: port mirroring or streaming?

We have a router that we need to monitor using NetFlow. The router is very important, so we are not allowed to enable Netflow on the router itself. Instead, it will have port mirroring enabled so that it can mirror traffic to another network…

netflow ntop port-mirroring

asked Apr 21 '17 at 12:29

Max Ivak

171
1
4

0

votes

1 answer

How do I generate a source of netflow data for nfcapd?

I am trying to use nfcapd to save netflow files for use by a network analysis tool. How do I capture network traffic on my host and send it into nfcapd? Can I use wireshark/tshark or something similar?

wireshark packet-capture tshark netflow

asked Mar 14 '17 at 02:09

aaa90210

351
6
15

0

votes

1 answer

What is a Netflow?

I am a little confused with the definition of the "NetFlow" sense. Does NetFlow declare, the exchange of the total packets between two IPv4 addresses irrespective the network ports or describe the headers of the packets (Source IP, Dest IP, Source…

netflow

asked Sep 28 '16 at 18:52

Panagiotis

115
5

0

votes

1 answer

Creating High Availability Netflow Collector

I'm currently working on replacing our existing Netflow collector that is EOL with a new one. The goal is to support around 4 million flows/minute and have HA capabilities. Below is my initial thought: Network devices --> F5 Load Balancer --> 3…

linux high-availability netflow

asked Mar 31 '15 at 17:36

Eric

1,373
3
17
33

0

votes

1 answer

How do I configure NetFlow 5/9 export on Juniper switches?

What are the commands to make a Juniper switch send netflow data (V5 or V9) to a netflow collector for bandwidth monitoring?

monitoring switch bandwidth juniper netflow

asked Sep 16 '09 at 09:16

networker1

61
1
1
7

0

votes

3 answers

How to see traffic traversing a Cisco ASA by inside host?

I have a Cisco ASA 5515 running 9.1 and am interested in learning how I can see bandwidth usage by individual hosts. For instance, using MRTG I can see that my average bandwidth utilization is approx 10 Mbps with spikes up to almost 100 Mbps, and…

cisco cisco-asa bandwidth-measuring netflow

asked Nov 27 '14 at 22:34

vrtigo1

861
3
10
17

0

votes

0 answers

What is the Cisco 7200 VXR Netflow Default Sample Rate?

I am trying to collect netflow data from a Cisco 7200 VXR router. I need to specify the sample rate, but I cannot seem to get the information from the cisco router and I do not know what the default sample rate is. Do you know what the default…

cisco netflow

asked Oct 24 '14 at 13:51

John

105
2
3
9

0

votes

1 answer

CA Network Flow Analysis - sFlow Monitoring Issues

I've been attempting to monitor sFlow traffic from some F5 LTMs, but I'm getting figures like 9 terabytes of data over http, which I don't believe we are getting. Has anyone else had issues like this when monitoring flows with CA NFA ?

netflow sflow

asked Oct 15 '13 at 02:11

Lawrence

380
2
10

0

votes

1 answer

Does CA Network Flow Analysis Monitor SFlow

Does anyone know if CA Network Flow Analysis can monitor SFlow or receive SFlow packets ?

netflow sflow

asked Sep 13 '13 at 01:37

Lawrence

380
2
10

Questions tagged [netflow]