Specifications

ManualsBrandsEnterasys ManualsComputer equipmentN Standalone (NSA) Series

161

162

163

164

165

166

167

168

169

170

Configuring NetFlow on the Enterasys S-Series, N-Series, and K-Series Modules

May 18, 2011 Page 9 of 21

Thedefaultbehaviorisforthetemplatetobesentafter20flowreportpacketsaresent.Sincedata

recordpacketsaresentoutperflow,alongFTPflowmaycausethetemplatetimeouttimerto

expirebeforethemaximumnumberofpacketsaresent.Inanycasearefresh

ofthetemplateis

sentattimeoutexpirationaswell.

Settingtheappropriaterefreshrateforyoursystemmustbedetermined,becausethedefault

settingsofa20flowreportrefreshrateanda30‐minutetimeoutmaynotbeoptimalforyour

environment.Forexample,aswitchprocessinganextremely

slowflowrateof,say,20flowreports

perhalfhour,wouldrefreshthetemplatesonlyeveryhalfhourusingthedefaultsettings,whilea

switchsending300flowreportpacketspersecondwouldrefreshthetemplates15timesper

second.

Enterasysrecommendsthatyouconfigureyoursystemsoit

doesnotrefreshtemplatesmoreoften

thanoncepersecond.

UsethesetnetflowtemplatecommandtosettheNetFlowexporttemplaterefreshrateand

timeoutforthissystem.

UsetheclearnetflowtemplatecommandtoresettheNetFlowexporttemplaterefreshrateand

timeouttothe defaultvalues.

Configuring a NetFlow Port

NetFlowrecordsareonlycollectedonportsthatareenabledforNetFlow.

UsethesetnetflowportenablecommandtoenableNetFlowonthespecifiedports.

Useeitherthesetnetflowportdisablecommandortheclearnetflowportcommandtodisable

NetFlowonthespecifiedports.

Usetheclearnetflowport

commandtosettheporttothedefaultvalueofdisabled.

Configuring the NetFlow Cache

EnablingtheNetFlowCachegloballyenablesNetFlowonallmodulesforthissystem.When

NetFlowrecognizesanewflowontheingressport,itcreatesaNetFlowrecordforthatflow. The

NetFlowrecordresidesintheNetFlowcacheforthatportuntilanexpirationeventistriggeredfor

thatflow,

atwhichtimeitissentalongwithotherexpiredflowsinanexportpackettothe

NetFlowcollectorforprocessing.

UsethesetnetflowcacheenablecommandtoenableNetFlowonthissystem.

UsethesetnetflowcachedisablecommandtogloballydisableNetFlowonthissystem.

Usetheclear

netflowcachecomm andtoresettheNetFlowcachetothedefaultvalueofdisabled

forthismodule.

Configuring Optional NetFlow Export Data

TheexportofoptionalsourceanddestinationMACaddressandVLANIDdataisdisabledby

default.Includingtheseexportdataoptionsintheflowrecordmakestherecordlargerandresults

infewerrecordsandexportedpackets.

Ifthemacoptionisenabled,bothincomingsourceanddestinationMACaddresses

areincluded

intheexportdataforthecollector.