Re: [Flow-tools] M5 Cflowd Configuration

Edwin Lok Fri, 24 Sep 2004 20:55:43 -0700

Just define the firewall filter so that all packets are sampled

filter flow {
          term term_1 {
              then {
               count count_Lo0;
                  log;
                  sample;
                  accept;
              }
          }
      }

then apply it to each interface that you want to export cflow.
eg.
interfaces {
    fe-0/1/0 {
        family inet {
            filter {
                    input term_1;
                    output term_1;
            }
        }
    }
}


of course you must have this as well:

forwarding-options {
    sampling {
        input {
            family inet {
                rate 250;
                run-length 0;
            }
        }
        output {
            cflowd xx.xx.xx.xx {
                port xxx;
                version 5;
                no-local-dump;
                autonomous-system-type origin;
            }
        }
    }
}


On Fri, 24 Sep 2004 [EMAIL PROTECTED] wrote:


Hi Edwin,

     I define this firewal filter in my router.

     filter flow {
         term term_1 {
             from {
                 source-address {
                     x.x.x.x/32;
                     x.x.x.x/32;
                     x.x.x.x/32;
                }
            }
             then {
              count count_Lo0;
                 log;
                 sample;
                 accept;
             }
         }
     }

     The source-address defined in filter are the IP of the interfaces
that I want to do cflow export.  It works??? I must apply this filter for
each one interface that i want to do cflow export or I can apply just for
Loopback interface ??

     Thanks for any help...

     Epafras

|---------+--------------------------->
|         |           Edwin Lok       |
|         |           <[EMAIL PROTECTED]|
|         |           ic.net.sg>      |
|         |                           |
|         |           23/09/04 22:24  |
|         |                           |
|---------+--------------------------->
 
>-------------------------------------------------------------------------------------------------------------------------------|
 |                                                                                     
                                          |
 |        Para:    [EMAIL PROTECTED]                                                   
                                 |
 |        cc:      [EMAIL PROTECTED]                                                   
                             |
 |        Assunto: Re: [Flow-tools] M5 Cflowd Configuration                            
                                          |
 
>-------------------------------------------------------------------------------------------------------------------------------|


you need to define the sampling output and also you must define sampling in
a
firewall filter which must be applied to the interface that you want to do
cflow
export.

On Thu, 23 Sep 2004 [EMAIL PROTECTED] wrote:

Hi,

     Somebody has a example of configuration of the Juniper M5 to export
flows (forwarding-options, filters or sampling and interfaces) ??

     I read about this in Juniper.net, but it din't not work.

     Thanks very much.

     Epafras


_______________________________________________
Flow-tools mailing list
[EMAIL PROTECTED]
http://mailman.splintered.net/mailman/listinfo/flow-tools

_______________________________________________
Flow-tools mailing list
[EMAIL PROTECTED]
http://mailman.splintered.net/mailman/listinfo/flow-tools

Re: [Flow-tools] M5 Cflowd Configuration

Reply via email to