[j-nsp] cflowd/netflow exporting broken (removed?) SRX series on JunOS 10.0R2.10
Chris Kawchuk
juniperdude at gmail.com
Thu Dec 17 15:19:26 EST 2009
Hi All,
Anyone else's netflow simply "stop working" after they upgraded an SRX-series to JunOS 10.0R2? (Specifically on an SRX650, but might appliy to any of the srx-sme line, SRX240, etc...)
Worked fine under 10.0 R1..... (shrug.. and 9.6R1, and 9.6 R2...etc...)
@CLGR01-CR01> show configuration forwarding-options
sampling {
traceoptions {
file sampling-log size 100m files 10 world-readable;
}
input {
rate 10;
run-length 9;
max-packets-per-second 7000;
}
family inet {
output {
flow-server 10.6.0.13 {
port 9996;
autonomous-system-type origin;
source-address 10.6.0.21;
version 5;
}
}
}
}
... nothing in the log file.. =P
and....
interfaces {
ge-0/0/1 {
unit 0 {
family inet {
filter {
input packetmode-ipv4;
}
sampling {
input;
}
address removed.to.protect.the.guilty.x.x.x.225/29;
}
}
}
Yep.. sampling pretty much everything coming in...
(And yes, this box is in "packet mode" for the majority of it's interfaces... using it as a nice JunOS BGP core router in the 1Gbps/sec range...)
- Chris.
More information about the juniper-nsp
mailing list