NORTEL NETFLOW - IPFIX

85

Configuring Network Management

Chapter 3Configuring IPFIX

This chapter describes the function and configuration of the IPFIX feature. For conceptual information about IPFIX, see “Internet Protocol Flow Information eXport (IPFIX)” on page 39.

This chapter includes the following topics:

Overview

IPFIX is an Internet Engineering Task Force (IETF) standard that is an improvement of the Netflow V9 protocol. IPFIX allows monitoring of IP flows on Ethernet Routing Switch platforms, as well as on other Nortel switching platforms.

An IP flow is defined as a set of packets sent over a period of time that have some common properties. These properties include:

• Source IP address

Topic Page

Overview 85

Configuring IPFIX using Device Manager 86

Configuring IPFIX using the CLI 94

Using the show ip ipfix commands 104

Using FTP to transfer files to the network 113

Configuring the IPFIX local collector 113

IPFIX configuration example 1 114

IPFIX configuration example 2 116

86 Chapter 3 Configuring IPFIX

314723-E Rev 00

• Destination IP address• Protocol type• Source protocol port• Destination protocol port• Ingress VLAN ID• Ingress port and observation point (VLAN or port)

You can view the flow information using the command line interface (CLI).

The flow information is also exported periodically to third party collectors. The collector stores a large number of flow records from several devices in the network. The IPFIX standard specifies the protocol for exporting the flows to the collector, including the formatting of flow records and the underlying transport protocols, such as UDP, TCP, or SCTP. Nortel recommends the use of the third party collector agent called NetQoS.

Configuring IPFIX using Device Manager

You use an Access Control List (ACL) filter to configure IPFIX. This allows you to perform IPFIX on selected flows.

This section includes the following topics:

• “Enabling IPFIX globally”• “Configuring a slot for a collector” on page 87• “Configuring an exporter slot” on page 89• “Modifying IPFIX on a port” on page 90• “Viewing IPFIX hash statistics” on page 92• “Viewing exporter statistics” on page 93

Note: IPFIX requires R modules.

Chapter 3 Configuring IPFIX 87


Enabling IPFIX globally

Before you can configure or use IPFIX, you must globally enable it. To enable IPFIX globally:

1 In Device Manager, select Serviceability > IPFIX.

The Ipfix dialog box opens with the Global tab displayed (Figure 19).

Figure 19 Ipfix—Global tab.

2 To enable IPFIX on the switch, select enable.

3 Click Apply.

IPFIX is enabled globally.

Configuring a slot for a collector

To configure a slot for a collector:


The Ipfix dialog box opens with the Global tab displayed (Figure 19 on page 87).

2 Click the Collectors/Slots tab.

The Ipfix-Collectors/Slots dialog box appears (Figure 20 on page 88).


314723-E Rev 00

Figure 20 Ipfix—Collectors/Slots

3 Click Insert.

The Ipfix, Insert Collectors/Slots dialog box opens (Figure 21).

Figure 21 Ipfix, Insert Collectors/Slots tab

4 In SlotNum, enter a slot number.

5 In the Address field, enter the IP address of the Collector.

6 In the ExporterIP field, enter the IP address of the Exporter.

7 Select Enable.

8 Click Insert.

Table 13 on page 89 shows information for the Ipfix, Insert Collectors/Slots parameters.



Configuring an exporter slot

To configure an exporter slot:

1 Select Serviceability > IPFIX.

2 Click the Exporters/Slots tab.

The Ipfix—Exporters/Slots dialog box opens (Figure 22).

Figure 22 Ipfix—Exporters/Slots

3 As required, select parameters and change their values.

4 Click Apply.

Table 13 Ipfix, Insert Collectors/Slots descriptions

Field Description

SlotNum Slot number. An index to the Collector Entry.

AddressType IP address type of the collector. An index to the Collector Entry.

Address IP address of the collector. An index to the Collector Entry.

Protocol Protocol for export data from exporter to the collector.

DestPort Destination port to send the requests.

ExporterIpType IP address type of the exporter for the collector.

ExporterIP IP address of the exporter for the collector.

ProtoVer This specifies the protocol version for IPFIX.

Enable State of the particular collector. Enable is true by default.


314723-E Rev 00

Table 14 shows information for the Ipfix—Exporters/Slots parameters.

Modifying IPFIX on a port

To modify the IPFIX configuration on a port:


2 Click the Ports tab.

The Ipfix—Ports dialog box opens (Figure 23 on page 91).

Table 14 Ipfix—Exporters/Slots descriptions

Field Description

SlotNum Slot number. An index to the Collector Entry.

AgingIntv Flow record aging interval in seconds.

ActiveTimeout Flow record active timeout value in minutes.

ExportIntv Frequency of flow export to collector in seconds.

ExportState State of exporter.

TempRefIntvSec Template refresh timeout. Template is sent out to the collector at least every x seconds or every y exported packets, whichever occurs first.

TempRefIntvPkts Template refresh timeout. Template is sent out to the collector at least every x seconds or every y exported packets, whichever occurs first.



Figure 23 Ipfix—Ports

3 As required, select parameters and change their values.

4 Click Apply.

New values are shown in the dialog box.

Table 15 shows information for the Ipfix—Ports parameters.

Table 15 Ipfix—Ports field descriptions

Field Description

Id An index to the IpfixConfPortEntry, a unique identifier of the port Id.

SampleRate Configures the sampling rate. Samples one in every N packets.


314723-E Rev 00

Viewing IPFIX hash statistics

You can view IPFIX hash statistics. To do so:



2 Click the Exporters/Slots tab (Figure 22 on page 89).

3 Select a slot and click Graph.

The IPFIX Hash Stats—Slot Hash tab appears (Figure 24).

Figure 24 IPFIX Hash Stats—Slot Hash

You can view the hash statistics for each slot.

DynamicSampRate Indicates the dynamic sampling rate.

HashPolyCoeffs Sets the hash polynomial coefficients.

HashPolySeed Sets the hash polynomial seed.

Flush Deletes all records stored in the COP, or initiates an export of all records and deletes the database after the export finishes.

AllTraffic This is used to enable or disable IPFIX on all traffic for the specified port.

HashKeyId Hash key ID.


Field Description



Table 16 shows information for the IPFIX Hash Stats parameters.

Viewing exporter statistics



2 Click the Collectors/Slots tab (Figure 20 on page 88).

3 Select a slot.

4 Click Graph.

The IPFIX Exporter Stats—Exporter tab appears (Figure 25).

Figure 25 IPFIX Exporter Stats—Exporter tab

Table 17 shows information for the IPFIX Hash Stats parameters.


Field Description

HashOverflows Count of hash overflows per slot.

HashDrops Count of hash drops per slot.

Table 17 Exporter Stats—Exporter tab field descriptions

Field Description

OutPkts Number of packets sent.


314723-E Rev 00

Configuring IPFIX using the CLI

You must globally enable IPFIX before you can use any IPFIX commands.

This section includes the following topics:

• “Disabling and enabling IPFIX globally”• “Enabling ACL filters” on page 95• “Enabling IPFIX on an ACL” on page 96• “Configuring IPFIX parameters on a port” on page 97• “Configuring IPFIX slot parameters” on page 100• “Configuring IPFIX collector parameters” on page 102

Disabling and enabling IPFIX globally

To globally enable or disable IPFIX, use the following command:

config ip ipfix

This command has the following options:

OutOctets Number of bytes sent.

PktsLoss Number of records lost.

config ip ipfix

followed by:

info Show current level parameter settings and next level directories.

state <enable|disable>

Enables or disables IPFIX.

Table 17 Exporter Stats—Exporter tab field descriptions

Field Description

Documents

NORTEL NETFLOW - IPFIX