Fluke Recording Equipment manual Configuration Guide, Licensing, Listener Ports, Snmp Settings

Page 58

User’s Guide – version 3.1.3

NetFlow Tracker

Configuration Guide

To open any of the settings pages, click “Settings” on the main page. If you have password protection enabled you may have to login as an administrative user to see the link. Each settings page controls a single aspect of the software; if you make any changes you must click “Ok” on the page before they will be applied and changed. “Cancel” will return to the main settings page without altering anything. It is recommended that you do not use the “Back” button in your web browser as it can cause changes to be lost.

Licensing

You can check the status of your licence or apply a new one using this page. If you received a licence file, load it by clicking “Browse” to locate the file, then click “Load”. If you received your licence in text form, paste it into the large box and press “Decode”. Either way, the licence details will be updated to reflect the new licence. You must click “Ok” to use the new licence.

Listener Ports

NetFlow Tracker listens for NetFlow packets sent to it by any number of routers. When you set up NetFlow exporting on a router, you are asked to provide a port number on the server to send exports to. This is normally 2055, and this is the default used by NetFlow Tracker. However, if you are sending NetFlow exports to NetFlow Tracker from more than one router it is recommended that you use a different port for each one.

To do this, simply add the port numbers you wish to use to the list. You can also choose to listen on all local IP addresses or only one if the server running NetFlow Tracker has more than one IP address and you wish to listen for NetFlow exports on a specific address rather than on all of them.

When you have added all the ports you wish to listen for NetFlow exports on, click “Ok”. If you get an error message, it is probably because one or more of the ports are in use already. They will be marked with an asterisk (*). Remove these ports and add others until there are no errors.

Under very heavy load you may need to increase the size of the buffer used for each listener; see missed flows under Performance Counters below for more.

SNMP Settings

Whenever NetFlow Tracker receives exports from a previously unknown device it attempts to scan the device using SNMP to discover its name and the properties of its interfaces. A password called a community is required to use SNMP, and in many cases a default community of “public” is set up on a device. If your devices do not have a read-only community of “public” set up you should add the communities they so use to this list. NetFlow Tracker attempts each one in turn when a new device is detected, so you should put the most frequently used communities first in the list.

You can also set the timeout and number of retries used for SNMP requests; it is unlikely you will need to alter these.

58

Page 57 Page 59
Image 58
Page 57 Page 59
Contents NetFlow Tracker Software License Agreement Grant of Licence and Payment of FeesCopyright Customer Remedies Confidential Information and Security User’s Guide version NetFlow Tracker Definitions Undertakings by You Support ServicesSupport Charges Supplier’s UndertakingsIntellectual Property Rights Limitation of Liability and indemnityTermination Confidential Information and Security MiscellaneousSupport Hours Exceptions to Support ServicesResponse Times Contents LONG-TERM Reports Appendix 2 CSV File Format Features and Benefits What is NetFlow?What is NetFlow Tracker? IntroductionUser’s Guide version NetFlow Tracker Minimum System Requirements InstallationPre-installation Checks Operating System SupportInstallation on Microsoft Windows Installation on Solaris and Linux Post-installation Tasks Configure your routers and switches Set up Snmp community stringsSet up web front-end security Add listener portsUsing NetFlow Tracker Device traffic meters InterfacesChart legend Working with ChartsChanging the displayed chart Per-AS dataZooming View a standard chart as a pie chartView a standard chart as a tabular report Zooming outWorking with Pie Charts Working with Tabular Reports User’s Guide version NetFlow Tracker Address Reports Report TemplatesSession Reports Network Reports QoS ReportsInterface Reports Other Reports Creating Filtered ReportsTraffic Identification Reports Report TemplateStart Time Sample SizeSource Data End TimeVPN Out InterfaceIn/Out Interface Out VPNToS Recognised ApplicationIdentified Application DiffServSource Mask Destination SubnetSource/Destination Subnet Destination MaskPer-device and Per-interface Long-term Reports Long-term ReportsDevices and Interfaces Filter EditorUser’s Guide version NetFlow Tracker Executive Reports General Form Report URL FormatReport Format Parameters 0024 Chart0023 0025False NumberTrue Heading128 FeaturesSections 256Time Range Parameters Week HourDay MonCalendar-based advanced Applying a time-of-day mask to the time range HHmmDay1-day2/time1-time2 100 110105 113140 115120 125Minute 285300 DailyFilter Parameters Port/name NamePort/number Tos PrecPrec%20tos Byte CodeAddr/mask Password PasswordSecurity Parameters Secret Management Portal Access Control ParametersNull Aclid specifies a permitted long-term report Features Disk Speed Performance TuningDatabase Server Settings Query SizeLicensing Configuration GuideSnmp Settings Listener PortsDevice Settings Device SettingsDevice List Traffic Classes ArchivingIdentified Applications VPNs Security SettingsDeleting a Device Management Portal Settings Report Settings Long-term Reports Saved FiltersExecutive Reports Span class=repdesctextTest/span Content Nelements=5 and chartWidth=400Sub-reports User’s Guide version NetFlow Tracker IP Application Names Hostname Resolution SettingsDiffServ Names AS Names Database SettingsSubnet Names User’s Guide version NetFlow Tracker Backup ArchivingMemory Settings Performance CountersMissed Flows Unprocessed FlowsetsInterface Scans Missed ExportsIp cef Appendix 1 Device ConfigurationEnabling Netflow Export on an IOS Device Ip flow-export destination addressShow ip flow export Ip flow-cache timeout activeIp flow-cache timeout inactive Show ip cache flow Show ip cache verbose flowMls nde sender version Ip route-cache flow infer-fieldsMls netflow Mls aging longUser’s Guide version NetFlow Tracker Set system name name Set mls bridged-flow-statistics enable vlanlistSet mls nde enable Set mls nde addressFlow-sampler-map allflows mode random one-out-of 1 exit Enabling Flow Detail Records on a Packeteer DeviceEnabling NetFlow on an Enterasys Device Using sflowtool to Convert sFlow Records to NetFlow AddressAppendix 2 CSV File Format Chart CSV formatTabular report CSV format Appendix 3 Third Party Software Components
Top Page Image Contents