NetFlow Analyzer ナレッジベース

インターフェースごとに受信・送信両方の向きについて監視するFlexible NetFlow 設定サンプル


以下はフローコンフィグサンプルです。
詳細に関しましては機器ベンダー様へのお問い合わせください。

 

[グローバル コンフィギュレーション モードを開始]
configure terminal

[Flow Exporter 設定]
flow exporter エクスポータ名
destination エクスポート先IPアドレス
transport udp 9996
template data timeout 60 (単位:秒)
option interface-table timeout 60
option application-table timeout 60

[flow record 入力側設定]
flow record NETFLOW_REC_IN
match ipv4 tos
match ipv4 protocol
match ipv4 source address
match ipv4 destination address
match transport source-port
match transport destination-port
match flow direction
match interface input
collect counter bytes long
collect counter packets long
collect routing source as
collect routing destination as
collect routing next-hop address ipv4
collect ipv4 source mask
collect ipv4 destination mask
collect transport tcp flags
collect counter bytes
collect counter packets
collect timestamp sys-uptime first
collect timestamp sys-uptime last

[flow record 出力側設定]
flow record NETFLOW_REC_OUT
match ipv4 tos
match ipv4 protocol
match ipv4 source address
match ipv4 destination address
match transport source-port
match transport destination-port
match flow direction
match interface output
collect counter bytes long
collect counter packets long
collect routing source as
collect routing destination as
collect routing next-hop address ipv4
collect ipv4 source mask
collect ipv4 destination mask
collect transport tcp flags
collect counter bytes
collect counter packets
collect timestamp sys-uptime first
collect timestamp sys-uptime last

[flow monitor 入力側設定]
flow monitor NETFLOW_MON_IN
exporter NETFLOW_EXP
record NETFLOW_REC_IN

[flow monitor 出力側設定]
flow monitor NETFLOW_MON_OUT
exporter NETFLOW_EXP
record NETFLOW_REC_OUT

exit

[監視対象インターフェースへのflow monitor の適用]
interface 監視対象インターフェース
ip flow monitor NETFLOW_MON_IN input
ip flow monitor NETFLOW_MON_OUT output

exit