Re: [j-nsp] flow collection + 'operation not permitted' - ?

• Next message: Przemyslaw Karwasiecki: "show chassis cos in JunOS 5.3"
• Previous message: Dave Humphrey: "RE: [j-nsp] Question on default-address-selection"
• Maybe in reply to: Ben Buxton: "[j-nsp] flow collection + 'operation not permitted' - ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

Ben,
   You might want to try and disable the firewall filter on ge-0/0/0 and see if it starts to work.
     Chris

--- Ben Buxton <b.buxton@planettechnologies.nl> wrote:
>
>Thanks for replies on the default-address-selection. Now that that
>is working, I'm having further issues in attempts to get
>sampling and flow export working.
>
>The flow collector, on a directly connected VLAN, does not
>receive any flow packets. I see the following things:
>
>wbenb@bba> show route 195.121.224.125
>
>inet.0: 111157 destinations, 111157 routes (111148 active, 8 holddown, 3
>hidden)
>+ = Active Route, - = Last Active, * = Both
>
>195.121.224.96/27 *[Direct/0] 3w2d 23:26:04
> > via ge-0/0/0.180
>
>wbenb@bba> ping 195.121.224.125
>PING 195.121.244.125 (195.121.224.125): 56 data bytes
>ping: sendto: Operation not permitted
>ping: sendto: Operation not permitted
>^C
>--- 195.121.224.125 ping statistics ---
>2 packets transmitted, 0 packets received, 100% packet loss
>wbenb@bba> show log sampled
>May 30 10:31:51 send_hdr_and_entries: couldn't send (Operation not
>permitted)
>May 30 10:31:51 Sent v8 (aggr 5) flows (2588 entries left in tree)
>May 30 10:31:51 send_hdr_and_entries: couldn't send (Operation not
>permitted)
>May 30 10:31:51 Sent v8 (aggr 5) flows (2553 entries left in tree)
>May 30 10:31:51 send_hdr_and_entries: couldn't send (Operation not
>permitted)
>May 30 10:31:51 Sent v8 (aggr 5) flows (2518 entries left in tree)
>[etc]
>
>wbenb@bba> show configuration
>[...]
>forwarding-options {
> sampling {
> input {
> family inet {
> rate 1000;
> run-length 2;
> }
> }
> output {
> cflowd 195.121.224.125 {
> port 2055;
> version 8;
> autonomous-system-type peer;
> aggregation {
> protocol-port;
> source-destination-prefix {
> caida-compliant;
> }
> }
> }
> }
> }
>}
>wbenb@bba> telnet 195.121.224.125
>Trying 195.121.224.125...
>telnet: connect to address 195.121.224.125: Operation not permitted
>telnet: Unable to connect to remote host
>
>mysterious...any ideas?
>
>Thanks,
>BB

_____________________________________________________________
Get your own free Ranch eMail and Classified Ads at http://cattletoday.com

_____________________________________________________________
Promote your group and strengthen ties to your members with email@yourgroup.org by Everyone.net http://www.everyone.net/?btn=tag

• Next message: Przemyslaw Karwasiecki: "show chassis cos in JunOS 5.3"
• Previous message: Dave Humphrey: "RE: [j-nsp] Question on default-address-selection"
• Maybe in reply to: Ben Buxton: "[j-nsp] flow collection + 'operation not permitted' - ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Mon Aug 05 2002 - 10:42:36 EDT