Softflowd has a sister application called softflowctl we can use to analyze the currently cached flows in softflowd.
NTOPNG EXPORT FLOWS HOW TO
Config done :) See below for how to confirm its working. Save the file and restart the service using /etc/init.d/softflowd restart.
Option control_socket '/var/run/softflowd.ctl' To do this simply edit /etc/config/softflowd directly and edit it similar to the below: config softflowd Uci set set set set set set set set set set set the changes using uci commit and restart the service using /etc/init.d/softflowd restart. So my second interface: uci add softflowd softflowd uci set set set set set set set set set set set you need more than one interface monitored just add multiple versions of the below and modify the accordingly. Also remove the references to softflow if you dont have more than one interface. To configure softflowd using uci just replace your collector IP and interfaces below. The sampling rate you would like to set - Default is 1 in 100 packets and I'd suggest leaving it around that level.Check CPU load before and after enabling softflow! (This has a minimal impact on my systems but this will add some load).Netflow collector netflow version support - If you're not sure I'd suggest trying v9 these days.Netflow collector IP address and port(s).Interface(s) to monitor - (e.g pick from ifconfig).Some details you'll need to know before you can configure softflowd though: I have two interfaces to monitor so the examples below include two, just modify the examples to suit your own setup. You can add multiple interfaces to be monitored and you can also monitor any interface that appears in the output of ifconfig. We'll look at the options for both below but just use the option you prefer (I prefer UCI since it does some sanity checking).
As with most applications on OpenWrt we can either manually edit this file or use UCI. Softflowd by default reads its config from the file /etc/config/softflowd. Updated list of available packages in /var/opkg-lists/openwrt_telephony Updated list of available packages in /var/opkg-lists/openwrt_routing Updated list of available packages in /var/opkg-lists/openwrt_packages Updated list of available packages in /var/opkg-lists/openwrt_luci Updated list of available packages in /var/opkg-lists/openwrt_base Updated list of available packages in /var/opkg-lists/openwrt_kmods Updated list of available packages in /var/opkg-lists/openwrt_core
NTOPNG EXPORT FLOWS INSTALL
SSH to the router, update package lists and install with opkg install softflowd BusyBox v1.30.1 () built-in shell (ash) Netflow is much richer in information than just SNMP and allows for detailed analysis of individual traffic flows. Softflow is a great opensource Netflow exporter that is support on OperWrt :) This allows us to sample the flows running through our OpenWrt router, export them to a netflow analyzer (more on those in a future post) and "see" our traffic.
0 kommentar(er)
