Is the Adtran 2nd GEN TA 924e capable of passing netflow information to Scrutinizer? If so, is this limited to newer firmware releases?
Thank you for asking this question in the support community. ADTRAN does not maintain a list of external data collectors that support Netflow version 9 (RFC 768). However, freeware collectors such as Flow-Viewer and Plixer’s Scrutinizer, as well as the commonly used commercial external data collectors like IBM’s Aurora and IdeaData’s Traffic and Security Analysis should work fine.
There are a couple of options with regard to traffic flow data collection. Traffic flow data can be sent either to an external collector, collected internally through Top Traffic, or both. External Data Collectors provide a more detailed view of traffic flow entries, but are not required for ITM to function. Collected data may be sent to an external collector for more detailed information, or sent through ITM’s internal Top Traffic data collector for general usage overviews.
Please note, that using ITM does slightly affect memory and CPU usage on your AOS product. Depending on the amount of available memory, capturing large amounts of traffic flow data may fill up the flow cache. An increase in memory or a reduction in data capture (by using sampling, for example) can alleviate this problem. To keep ITM memory and CPU usage to a minimum, RapidRoute must be enabled on each interface to be monitored using the ip ffe command from the interface configuration mode. For additional information on RapidRoute please review the post When to use FFE.
For additional information on ITM please review the Configuring Integrated Traffic Monitoring in AOS document. Also, for a reference document of what features are supported by each platform please use the AOS Feature Matrix.
I hope that makes sense, but please do not hesitate to reply to this post with any additional questions or information. I will be happy to help in any way I can.
Levi
Thank you for asking this question in the support community. ADTRAN does not maintain a list of external data collectors that support Netflow version 9 (RFC 768). However, freeware collectors such as Flow-Viewer and Plixer’s Scrutinizer, as well as the commonly used commercial external data collectors like IBM’s Aurora and IdeaData’s Traffic and Security Analysis should work fine.
There are a couple of options with regard to traffic flow data collection. Traffic flow data can be sent either to an external collector, collected internally through Top Traffic, or both. External Data Collectors provide a more detailed view of traffic flow entries, but are not required for ITM to function. Collected data may be sent to an external collector for more detailed information, or sent through ITM’s internal Top Traffic data collector for general usage overviews.
Please note, that using ITM does slightly affect memory and CPU usage on your AOS product. Depending on the amount of available memory, capturing large amounts of traffic flow data may fill up the flow cache. An increase in memory or a reduction in data capture (by using sampling, for example) can alleviate this problem. To keep ITM memory and CPU usage to a minimum, RapidRoute must be enabled on each interface to be monitored using the ip ffe command from the interface configuration mode. For additional information on RapidRoute please review the post When to use FFE.
For additional information on ITM please review the Configuring Integrated Traffic Monitoring in AOS document. Also, for a reference document of what features are supported by each platform please use the AOS Feature Matrix.
I hope that makes sense, but please do not hesitate to reply to this post with any additional questions or information. I will be happy to help in any way I can.
Levi
Thanks for the information. Our preferred external data collector is
Scrutinizer, though I remember a conversation with someone that mentioned that
the firmware release on our Adtran needed to be upgraded to be capable of
passing NetFlow or ITM data flow information to Scrutinizer, so I was trying to
qualify this as well as find out what Adtran firmware release has the
capability for the Adtran 2nd GEN TA 924e. If all firmware versions for this
router are capable that would be great, but if there is a specific release that
is recommended (the least buggy) that information would be great.
Thanks again.
Kurt, Not sure if there is a recommended release but the Netflow 9 export feature was added in AOS 17.02 for the 2nd gen TA900e products, so anything 17.02 or newer should work fine. Feature Support per product can be found in the AOS Feature Matrix.
Hope this helps,
-jamesandrew
I went ahead and flagged this post as “Assumed Answered.” If any of the responses on this thread assisted you, please mark them as either Correct or Helpful answers with the applicable buttons. This will make them visible and help other members of the community find solutions more easily. If you still need assistance, I would be more than happy to continue working with you on this - just let me know in a reply.
Levi
Would you be able to tell me how much of an additional CPU hit the router would take by enabling NetFlow and how this would effect performance? Is there an Adtran reconended configuration for the Atran 2nd GEN TA924e? We also have a couple NetVanta 4430 Adtran routers. Can the NetVanta 4430 router support NetFlow and if so what release started supporting it?