[j-nsp] RE : flow export

Bit Gossip bit.gossip at chello.nl
Wed Dec 3 16:10:25 EST 2008


If you want to sample all traffic, as it appears from your config, you
don't really need a fw filter but you can use the following simple form:

    ge-0/0/0 {
        unit 0 {
            family inet {
                sampling {
                    input;
                }
            }
        }
    }


Cheers,
bit


On Wed, 2008-12-03 at 20:18 +0100, david.roy at orange-ftgroup.com wrote:
> Hi,
> Try to create the filter at the "firewall family inet" hierarchy level. For IPV4 we can create filter at either "firewall" or "firewall family inet" hierarchy level but I don't know if there is some requierements for sampling filter. 
>  
> David
>  
> 
> ________________________________
> 
> De: juniper-nsp-bounces at puck.nether.net de la part de Bernard Kwofie
> Date: mer. 03/12/2008 20:08
> À: juniper-nsp at puck.nether.net
> Objet : [j-nsp] flow export
> 
> 
> 
> Hi,
>  I am trying to export flow data from my M10i to a linux box for nfsen to graph, but its not working. Can anybody help me out.  Thank you in advance.    Below is my configuration
> 
> interfaces {
>     so-0/0/0 {
>         unit 0 {
>             family inet {
>                 filter {
>                     input all;
>                     output all;
>                 }
>                 address x.x.x.x/24;
>             }
>         }
>     }
> firewall {
>     filter all {
>         term all {
>             then {
>                 sample;
>                 accept;
>             }
>         }
>     }
> }
> forwarding-options {
>     sampling {
>         input {
>             family inet {
>                 rate 100;
>             }
>         }
>         output {
>             cflowd x.x.x.x {
>                 port 9996;
>                 version 5;
>             }
>         }
>     }
> }
> 
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
> 
> 
> 
> 
> *********************************
> This message and any attachments (the "message") are confidential and intended solely for the addressees. 
> Any unauthorised use or dissemination is prohibited.
> Messages are susceptible to alteration. 
> France Telecom Group shall not be liable for the message if altered, changed or falsified.
> If you are not the intended addressee of this message, please cancel it immediately and inform the sender.
> ********************************
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp



More information about the juniper-nsp mailing list