Fluke Recording Equipment manual Security Settings, VPNs, Deleting a Device

Page 61

User’s Guide – version 3.1.3

NetFlow Tracker

VPNs

NetFlow Tracker can associate an interface on a device with a VPN for reporting and filtering. Any number of interfaces on any number of devices can be associated with a single VPN, and their traffic will be grouped together in the VPNs report and by the VPN filters. NetFlow Tracker will assign the customer-facing interfaces of an MPLS PE router using MPLS VPN and supporting the standard SNMP MIB automatically; you can override this or assign interfaces manually by first clicking “add/delete” in the heading of the VPN column of the interfaces box for any device. Each VPN must have a unique id and name; a description is optional. To set the VPN for an interface, simply click the VPN name and choose another in the dropdown box that appears. You can set the VPN to “none” if the interface is not part of a VPN; the P interface(s) on an MPLS PE router should have their VPN set to “none” as they carry traffic from multiple VPNs.

Deleting a Device

Finally, you can delete a device by clicking “Delete”; although the device will only be deleted when you click “Ok” in the main device settings page there is no way to cancel deleting a device except by pressing “Cancel” in the main device settings page an thus losing any other changes. You should also note that if the device is still sending exports to the software it will reappear.

Security Settings

You can set up password protection of the web front end to NetFlow Tracker by adding user accounts here. To add an account, type a login and the same password twice, and tick the administrator box if you wish the user to be able to configure the system. Click “Add” to add the user. To delete an existing user, tick the box above the “Delete” button corresponding to the user and click “Delete”. You can also reset a user’s password and whether or not the account is an administrator.

You must also choose what level of protection you desire. You can choose not to protect access at all; to protect only access to the settings pages or to protect both configuration and normal access. If you protect access of any sort you will need to add at least one administrator account.

You can also change the page that users see when they access the server without specifying a page (i.e., http://server/). You can specify a custom homepage that applies to all users, including the default one when logging in is not required. You can also specify a custom homepage for any user account.

Ensure that the URL of any custom homepage is relative to the server’s root; for example, the standard homepage would be specified as “index.jsp” and the Network Overview would be specified as “report.jsp?cid=_topdevices”. Note that since version 2.1, new installs of NetFlow Tracker have the Network Overview pre-configured as a custom homepage.

You can use your own html page if you wish by putting it in the “customweb” folder under the NetFlow Tracker install folder; it is then available from the NetFlow Tracker server as, for example, http://server/customweb/file.html, so the homepage would be simply customweb/file.html.

61

Page 60 Page 62
Image 61
Page 60 Page 62
Contents NetFlow Tracker Grant of Licence and Payment of Fees Software License AgreementCopyright Customer Remedies Confidential Information and Security User’s Guide version NetFlow Tracker Definitions Support Charges Support ServicesUndertakings by You Supplier’s UndertakingsIntellectual Property Rights Limitation of Liability and indemnityTermination Miscellaneous Confidential Information and SecuritySupport Hours Exceptions to Support ServicesResponse Times Contents LONG-TERM Reports Appendix 2 CSV File Format What is NetFlow Tracker? What is NetFlow?Features and Benefits IntroductionUser’s Guide version NetFlow Tracker Pre-installation Checks InstallationMinimum System Requirements Operating System SupportInstallation on Microsoft Windows Installation on Solaris and Linux Post-installation Tasks Set up web front-end security Set up Snmp community stringsConfigure your routers and switches Add listener portsUsing NetFlow Tracker Interfaces Device traffic metersChanging the displayed chart Working with ChartsChart legend Per-AS dataView a standard chart as a tabular report View a standard chart as a pie chartZooming Zooming outWorking with Pie Charts Working with Tabular Reports User’s Guide version NetFlow Tracker Address Reports Report TemplatesSession Reports Network Reports QoS ReportsInterface Reports Traffic Identification Reports Creating Filtered ReportsOther Reports Report TemplateSource Data Sample SizeStart Time End TimeIn/Out Interface Out InterfaceVPN Out VPNIdentified Application Recognised ApplicationToS DiffServSource/Destination Subnet Destination SubnetSource Mask Destination MaskDevices and Interfaces Long-term ReportsPer-device and Per-interface Long-term Reports Filter EditorUser’s Guide version NetFlow Tracker Executive Reports General Form Report URL FormatReport Format Parameters 0023 Chart0024 0025True NumberFalse HeadingSections Features128 256Time Range Parameters Day HourWeek MonCalendar-based advanced Applying a time-of-day mask to the time range HHmmDay1-day2/time1-time2 105 110100 113120 115140 125300 285Minute DailyFilter Parameters Port/name NamePort/number Tos PrecPrec%20tos Byte CodeAddr/mask Password PasswordSecurity Parameters Secret Management Portal Access Control ParametersNull Aclid specifies a permitted long-term report Features Database Server Settings Performance TuningDisk Speed Query SizeSnmp Settings Configuration GuideLicensing Listener PortsDevice Settings Device SettingsDevice List Traffic Classes ArchivingIdentified Applications VPNs Security SettingsDeleting a Device Management Portal Settings Report Settings Long-term Reports Saved FiltersExecutive Reports Span class=repdesctextTest/span Content Nelements=5 and chartWidth=400Sub-reports User’s Guide version NetFlow Tracker IP Application Names Hostname Resolution SettingsDiffServ Names AS Names Database SettingsSubnet Names User’s Guide version NetFlow Tracker Archiving BackupPerformance Counters Memory SettingsInterface Scans Unprocessed FlowsetsMissed Flows Missed ExportsEnabling Netflow Export on an IOS Device Appendix 1 Device ConfigurationIp cef Ip flow-export destination addressIp flow-cache timeout inactive Ip flow-cache timeout activeShow ip flow export Show ip cache flow Show ip cache verbose flowMls netflow Ip route-cache flow infer-fieldsMls nde sender version Mls aging longUser’s Guide version NetFlow Tracker Set mls nde enable Set mls bridged-flow-statistics enable vlanlistSet system name name Set mls nde addressEnabling Flow Detail Records on a Packeteer Device Flow-sampler-map allflows mode random one-out-of 1 exitEnabling NetFlow on an Enterasys Device Address Using sflowtool to Convert sFlow Records to NetFlowAppendix 2 CSV File Format Chart CSV formatTabular report CSV format Appendix 3 Third Party Software Components
Top Page Image Contents