Specifications

ManualsBrandsEnterasys ManualsComputer equipmentN Standalone (NSA) Series

161

162

163

164

165

166

167

168

169

170

How Can I Implement NetFlow?

May 18, 2011 Page 3 of 21

Figure 1 NetFlow Network Profile Example

TocompleteaNetFlownetworkprofile,enableNetFlowonallportswherepacketflows

aggregate.AtthetopofFigure 1youwillfindanabbreviatedsampleoftheindependentflow

recordsthatarecapturedateachNetFlow‐enabledport.Theseflowrecordswillberetained

locallyinacacheuntil

aflowexpirationcriteriahasbeenmet.Asshown,whenoneoftheflow

expirationcriteriaismet,NetFlowexportpacketsarethensenttotheNetFlowcollectorserver(s),

whereacollectorandmanagementapplicationhasbeeninstalled.Themanagementapplication

willprocesstherecordsandgenerateusefulreports.Thesereports

provideyouwithaclear

pictureoftheflowsthattraverseyournetwork,baseduponsuchdatapointsassourceand

destinationaddress,startandendtime,application,andpacketpriority.

Thefollowingstepsprovideahigh‐leveloverviewofaNetFlowimplementation:

1. Determinethebusinessornetworkpurposeofthe

informationNetFlowwillprovideyou.

LAN Cloud

Srdf

Ge.1.1

Srd Padd

173.100.21.2

Protocol

TCP

Dstif

Ge.1.5

TOS

0x20

SPrt

4967

DPrt

. . .

Srdf

Ge.1.1

Srd Padd

173.100.21.2

Protocol

UDP

Dstif

Ge.1.3

TOS

0xA0

SPrt

6234

DPrt

SIP

. . .

Profile Your Network Using NetFlow

Captured Flows

HTTP Flow

Voice over IP

Dstl Padd

10.0.277.12

Dstl Padd

20.0.100.10

Srdf

Ge.1.1

Srd Padd

173.100.21.2

Protocol

TCP

Dstif

Ge.1.7

TOS

0x00

SPrt

DPrt

4623

. . .

Voice over IP

Srdf Padd

20.0.100.50

Enable NetFlow

NetFlow

Collector IP

Address

10.10.0.1

Enable NetFlow

Management

Application

Installed

Independent Flows

Flows captured and cached at ingress port

NetFlow export packets sent to the collector/management

application based upon a flow expiration criteria