ʻIkepili huna
1 ADVANTECH Router App Net Flow Pfix
2 ʻIke Huahana
3 Nā kuhikuhi hoʻohana
4 Hoʻohana ʻia nā hōʻailona
5 Changelog
6 ʻO ka wehewehe ʻana o ka module
7 Hoʻonohonoho
8 ʻIkepili
9 Nā kuhikuhi hoʻohana
10 Hiki ke hana like me ka Engine ID
11 Nā Palapala Pili
12 Palapala / Punawai
12.1 Nā kuhikuhi
13 Nā leka pili

ADVANTECH-LOGO

ADVANTECH Router App Net Flow Pfix

ADVANTECH-Router-App-NetFlow-Pfix-PRODUCT

ʻIke Huahana

Nā kikoʻī

  • Mea hana: Advantech Czech sro
  • Helu helu: Sokolska 71, 562 04 Usti nad Orlici, Czech Republic
  • Palapala No.: APP-0085-EN
  • Hoʻoponopono Ka lā: 19 ʻOkakopa, 2023

Ka wehewehe o ka Module

  • ʻO ka NetFlow/IPFIX module he polokalamu kelepona i hoʻomohala ʻia e Advantech Czech sro ʻAʻole i hoʻokomo ʻia i loko o ka firmware router maʻamau a pono e hoʻouka ʻia ma kahi kaʻawale.
  • Hoʻolālā ʻia ka module no ka nānā ʻana i ka hele ʻana o ka pūnaewele. Hana ia ma ka hōʻiliʻili ʻana i ka ʻike kalepa IP me ka hoʻohana ʻana i kahi noiʻi i hoʻokomo ʻia ma nā mea hoʻokele NetFlow.
  • Hoʻouna ʻia kēia ʻike i kahi ʻohi NetFlow a me kāna mea nānā no ka nānā hou ʻana.

Web Ikepili

Ke hoʻokomo ʻia ka module, hiki iā ʻoe ke komo i kāna web interface ma ke kaomi ʻana i ka inoa module ma ka ʻaoʻao ʻaoʻao o nā polokalamu Router o kāu router web interface. ʻO ka web Aia ka interface me kahi papa kuhikuhi me nā ʻāpana like ʻole:

Hoʻonohonoho

Hiki iā ʻoe ke hoʻonohonoho i nā ʻano hoʻonohonoho like ʻole o ka app router NetFlow/IPFIX. No ke komo ʻana i nā hoʻonohonoho hoʻonohonoho, kaomi i ka mea "Global" ma ka papa kuhikuhi nui o ka module web interface. Aia nā mea hiki ke hoʻonohonoho ʻia:

  • E hoʻā i ka Probe: Hoʻomaka kēia koho i ka hoʻouna ʻana i ka ʻike NetFlow i kahi ʻohi mamao (inā wehewehe ʻia) a i ka ʻohi kūloko (inā hiki).
  • Hōʻoia: Hiki i kēia koho ke koho i ka protocol e hoʻohana ʻia no ka hoʻouna ʻana i ka ʻike NetFlow. Hiki iā ʻoe ke koho mai NetFlow v5, NetFlow v9, a i ʻole IPFIX (NetFlow v10).
  • ID mīkini: Hiki i kēia koho ke hoʻonohonoho i ka Observation Domain ID (no IPFIX), Source ID (no NetFlow v9), a i ʻole Engine ID (no NetFlow v5). Kōkua kēia i ka ʻohi e hoʻokaʻawale i waena o nā mea hoʻopuka he nui. No ka ʻike hou aku, e nānā i ka ʻāpana ma Engine ID Interoperability.

ʻIkepili

Hāʻawi ka ʻāpana ʻIke i nā kikoʻī e pili ana i ka module a me kāna mau laikini. Hiki iā ʻoe ke komo i kēia ʻāpana ma ke kaomi ʻana i ka mea "Information" ma ka papa kuhikuhi nui o ka module web interface.

Nā kuhikuhi hoʻohana

ʻIke i ʻohi ʻia

  • ʻOhi ka ʻōnaehana NetFlow/IPFIX i ka ʻike kaʻa IP mai ka ʻimi noiʻi o ke alalai. Loaʻa kēia i nā kikoʻī e like me ke kumu a me nā helu IP wahi e hele ai, helu packet, helu byte, a me ka ʻike protocol.

Hoihoi i ka ʻike i mālama ʻia

  • No ka hoʻihoʻi ʻana i ka ʻike i mālama ʻia, pono ʻoe e komo i ka ʻohi NetFlow a me ka mea nāna e hoʻopuka i ka ʻikepili. Na ka mea hōʻiliʻili a me ka mea nāna e hāʻawi i nā mea hana a me nā hōʻike no ka nānā ʻana a me ka nānā ʻana i ka ʻike i hōʻiliʻili ʻia.

Hiki ke hana like me ka Engine ID

  • ʻO ka hoʻonohonoho Engine ID i ka hoʻonohonoho hoʻonohonoho hiki iā ʻoe ke kuhikuhi i kahi ʻike kūʻokoʻa no kāu mea hoʻopuka. Pono kēia inā loaʻa iā ʻoe nā mea hoʻopuka he nui e hoʻouna ana i ka ʻikepili i ka ʻohi hoʻokahi.
  • Ma ka hoʻonohonoho ʻana i nā ID Engine ʻokoʻa, hiki i ka ʻohi ʻohi ke hoʻokaʻawale i waena o nā ʻikepili i loaʻa mai nā mea hoʻopuka like ʻole.

Hoʻopau kaʻa kaʻa

  • ʻAʻole hāʻawi ka module i ka ʻike kikoʻī e pili ana i ka manawa holo kaʻa. E ʻoluʻolu e nānā i nā palapala pili a e kelepona iā Advantech Czech sro no nā kikoʻī hou aku.

Nā Palapala Pili

  • No ka ʻike hou aku a me nā ʻōlelo kikoʻī, e ʻoluʻolu e nānā i kēia mau palapala:
  • Palapala Haʻikepili
  • Nā palapala pili ʻē aʻe i hāʻawi ʻia e Advantech Czech sro

FAQ

Nīnau: ʻO wai ka mea hana o NetFlow/IPFIX?

  • A: ʻO ka mea hana o NetFlow/IPFIX ʻo Advantech Czech sro

Nīnau: He aha ke kumu o NetFlow/IPFIX?

  • A: Hoʻolālā ʻia ʻo NetFlow/IPFIX no ka nānā ʻana i ka ʻoihana pūnaewele ma o ka hōʻiliʻili ʻana i ka ʻike IP traffic mai nā mea hoʻokele NetFlow-enabled a waiho i kahi ʻohi NetFlow a me ka mea nānā.

Nīnau: Pehea e hiki ai iaʻu ke komo i nā hoʻonohonoho hoʻonohonoho o ka module?

  • A: No ke komo ʻana i nā hoʻonohonoho hoʻonohonoho, kaomi i ka mea "Global" ma ka papa kuhikuhi nui o ka module web interface.

Nīnau: He aha ka hoʻonohonoho ID Engine i hoʻohana ʻia no?

  • A: ʻO ka hoʻonohonoho ID Engine e hiki iā ʻoe ke kuhikuhi i kahi ʻike kūʻokoʻa no kāu mea hoʻopuka aku, e kōkua ana i ka ʻohi e hoʻokaʻawale i waena o nā mea kūʻai aku he nui.
  • © 2023 Advantech Czech sro ʻAʻole hiki ke hoʻopuka a hoʻoili ʻia kekahi ʻāpana o kēia puke ma kekahi ʻano a i ʻole ma kekahi ʻano, uila a mechanical paha, me ke kiʻi, hoʻopaʻa ʻana, a i ʻole kekahi ʻōnaehana mālama ʻike a me ka ʻae ʻole i kākau ʻia.
  • Hiki ke hoʻololi ʻia nā ʻike ma kēia manual me ka ʻole o ka hoʻolaha ʻana, ʻaʻole ia e hōʻike i kahi hoʻokō ma ka ʻaoʻao o Advantech.
  • ʻAʻole kuleana ʻo Advantech Czech sro no nā pōʻino kūpilikiʻi a hopena paha ma muli o ka hoʻolako ʻana, hana, a hoʻohana paha i kēia manual.
  • ʻO nā inoa inoa a pau i hoʻohana ʻia ma kēia manual he mau hōʻailona inoa inoa ia o ko lākou mau mea nona. ʻO ka hoʻohana ʻana i nā hōʻailona a i ʻole nā ​​inoa inoa ʻē aʻe i loko o kēia puke no nā kumu kuhikuhi wale nō a ʻaʻole ia he ʻae ʻia e ka mea paʻa i ka hōʻailona.

Hoʻohana ʻia nā hōʻailona

  • ADVANTECH-Router-App-NetFlow-Pfix-FIG-1ʻO ka pōʻino - Nā ʻike e pili ana i ka palekana o ka mea hoʻohana a i ʻole ka pōʻino i ke alalai.
  • ADVANTECH-Router-App-NetFlow-Pfix-FIG-2Nānā - Nā pilikia e hiki mai ana ma nā kūlana kūikawā.
  • ADVANTECH-Router-App-NetFlow-Pfix-FIG-3ʻIkepili - Nā ʻōlelo aʻoaʻo a i ʻole ka ʻike o ka hoihoi kūikawā.
  • ADVANTECH-Router-App-NetFlow-Pfix-FIG-4Example – Example o ka hana, kauoha a palapala paha.

Changelog

NetFlow/IPFIX Changelog

  • v1.0.0 (2020-04-15)
    • Hoʻokuʻu mua.
  • v1.1.0 (2020-10-01)
    • Hōʻano hou ʻia ka CSS a me ka code HTML e hoʻokūkū i ka firmware 6.2.0+.

ʻO ka wehewehe ʻana o ka module

  • ʻAʻole i loaʻa i ka polokalamu kelepona ʻo NetFlow/IPFIX i loko o ka firmware router maʻamau. Hōʻike ʻia ka hoʻouka ʻana o kēia app router ma ka manual Configuration (e ʻike i nā palapala pili i ka Mokuna).
  • Hoʻoholo ʻia ka app router NetFlow/IPFIX no ka nānā ʻana i ka neʻe ʻana o ka pūnaewele. Loaʻa i nā mea hoʻokele ʻo NetFlow kahi noiʻi e hōʻiliʻili i ka ʻike pili IP a waiho iā lākou i kahi ʻohi NetFlow a me ka mea nānā.

Aia kēia polokalamu kelepona:

  • ʻO ka ʻimi NetFlow hiki ke hoʻouna i ka ʻike i ka ʻohi ʻohi Pūnaewele a me ka mea nānā, e laʻa httsp://www.paessler.com/prtg.
  • ʻO ka ʻohi NetFlow nāna e mālama i ka ʻike i hōʻiliʻili ʻia i kahi file. Hiki iā ia ke loaʻa a mālama i nā kaʻa NetFlow mai nā polokalamu ʻē aʻe.ADVANTECH-Router-App-NetFlow-Pfix-FIG-5

Web Ikepili

  • Ke hoʻopau ʻia ka hoʻokomo ʻana o ka module, hiki ke kāhea ʻia ka GUI o ka module ma ke kaomi ʻana i ka inoa module ma ka ʻaoʻao Router apps o ka router. web interface.
  • Aia ma ka ʻaoʻao hema o kēia GUI ka papa kuhikuhi me ka ʻāpana papa kuhikuhi Configuration a me ka ʻāpana papa kuhikuhi.
  • Aia ka pauku papa kuhikuhi hoʻopilikino i ka mea Hoʻihoʻi wale nō, e hoʻololi ana mai ko ka module web ʻaoʻao i ko ka router web ʻaoʻao hoʻonohonoho. Hōʻike ʻia ka papa kuhikuhi nui o ka GUI o ka module ma ke Kiʻi 2.ADVANTECH-Router-App-NetFlow-Pfix-FIG-6

Hoʻonohonoho

Ka honua

  • Hiki ke hoʻonohonoho ʻia nā hoʻonohonoho ʻo NetFlow/IPFIX router app ma ke kaomi ʻana i ka mea Global ma ka papa kuhikuhi nui o ka module. web interface. Ua pauview o nā mea hiki ke hoʻonohonoho ʻia i hāʻawi ʻia ma lalo nei.ADVANTECH-Router-App-NetFlow-Pfix-FIG-7
'ikamu wehewehe
E ho'ā i ka Probe E hoʻomaka i ka hoʻouna ʻana i ka ʻike NetFlow i kahi ʻohi mamao (ke wehewehe ʻia), a i ʻole i ka ʻohi ʻĀina (inā hiki).
Kūkākūkā Hoʻohana ʻia ka protocol: NetFlow v5, Netflow v9, IPFIX (Net- Flow v10)
ID engine Nānā Domain ID (ma IPFIX, Source Id ma NetFlow v9, a i ʻole Engine Id ma NetFlow v5) waiwai. Hiki i kēia ke kōkua i kāu ʻohi e hoʻokaʻawale i waena o nā mea kūʻai aku he nui. E ʻike pū i ka ʻāpana ma ka Engine ID Interoperability.
'ikamu wehewehe
Sampler (nele): hoʻouna i kēlā me kēia kahe i ʻike ʻia; hoʻoholo hoʻoholo: hoʻouna i kēlā me kēia N-th kahe i ʻike ʻia; kūʻokoʻa: koho i kekahi mai loko mai o N kahe; hash: koho i ka hash-like ole i kekahi mai loko mai o N kahe.
Sampleer Rate ʻO ka waiwai o N.
Hoʻopau kaʻa kaʻa ʻole E hoʻouna i ke kahe ma hope o ka hana ʻole ʻana no 15 kekona. ʻO 15 ka waiwai paʻamau.
Hoʻopau manawa kaʻa kaʻa E hoʻouna i ke kahe ma hope o ka hana ʻana no 1800 kekona (30 mau minuke). ʻO 1800 ka waiwai paʻamau. E ʻike pū i ka ʻāpana o ka manawa hoʻomaha.
ʻOhi mamao IP address o ka NetFlow collector or analyzer, kahi e waiho ai i ka NetFlow traffic information i ohiia. ʻO ke awa ke koho, paʻamau 2055. Hiki ke loaʻa i ka Detination kahi papa inoa i hoʻokaʻawale ʻia o nā koma o nā helu IP he nui (a me nā awa) e hoʻohālike i ka NetFlow i ʻelua a ʻoi aku ka mea ʻohi/nānā.
E ho'ā i ka mea hōʻiliʻili kūloko E hoʻomaka i ka loaʻa ʻana o ka ʻike NetFlow mai ka Probe kūloko (inā hiki) a i ʻole mai kahi ʻimi mamao.
Ka wā mālama Hōʻike i ke kaʻina manawa i kekona e hoʻololi ai files. ʻO ka waiwai paʻamau he 300s (5min).
Ka pau ʻana o ka mālama ʻana Hoʻonohonoho i ka manawa ola kiʻekiʻe no files i ka papa kuhikuhi. Hoʻopau ka waiwai o 0 i ka palena o ke ola.
Hale kūʻai i nā helu SNMP E hōʻoia no ka mālama ʻana i ka helu helu SNMP o ke kikowaena hoʻokomo/puka (%in, %out) ma waho aʻe o ka ʻike maʻamau, e ʻike ma lalo.
E kūʻai aku i ka helu IP Hop aʻe E nānā no ka mālama ʻana i ka helu IP o ka hop hou o ka huakaʻi i waho (%nh).
Hale kūʻai e lawe ana i ka IP Address E hōʻoia no ka mālama ʻana i ka helu IP o ka mea hoʻokele hoʻopuka (%ra).
Mea kūʻai aku i ka ʻenekini ID E hōʻoia i ka mālama ʻana i ka Engine ID o ka mea hoʻokele lawe aku (%eng).
Ka manawa hoʻokipa hale kūʻai E nānā no ka mālama ʻana i ka manawaamp i ka wā i loaʻa ai ka ʻike kahe (%tr).

Papa 1: Hōʻike i nā mea hoʻonohonoho

ʻIkepili

nā laikini hōʻuluʻulu i nā laikini Open-Source Software (OSS) i hoʻohana ʻia e kēia moduleADVANTECH-Router-App-NetFlow-Pfix-FIG-8

Nā kuhikuhi hoʻohana

ʻAʻole pono e hoʻouna ʻia ka ʻikepili NetFlow ma luna o WAN, ke ʻole ke hoʻohana ʻia ʻo VPN. ʻAʻole paʻa ʻia ka ʻikepili a hoʻopili ʻia paha, no laila hiki i ka mea ʻae ʻole ke ʻae a view ka ʻike.

ʻIke i ʻohi ʻia

Hoʻouna mau ʻia kēia pūʻulu ʻike maʻamau e ka probe a mālama ʻia e ka ʻohi:

  • Manawaamp i ka wā i ʻike mua ʻia ai ke kaʻa (%ts) a i ʻike hope ʻia (%te), me ka hoʻohana ʻana i ka uaki o ka ʻimi
  • Ka helu o nā paita (%byt) a me nā ʻeke (%pkt)
  • Hoʻohana ʻia ke kuʻina (%pr)
  • TOS (%to)
  • Nā hae TCP (%flg)
  • Helu IP kumu (%sa, %sap) a me ke awa (%sp)
  • Helu IP kahi e hele ai (%da, %dap) a me ke awa (%dp)
  • ʻAno ICMP (%it)

Hoʻouna ʻia kēia mau mea, akā mālama ʻia ma ke noi (e ʻike i ka config ma luna):

  • SNMP index of the input/output interface (%in, %out)
  • IP address o ka lele hou aku o ka holo i waho (%nh)
  • IP address (%ra) a me Engine ID (%eng) o ka mea alala hoʻopuka (probe)
  • Manawaamp i ka wā i loaʻa ai ka ʻike kahe (%tr), me ka hoʻohana ʻana i ka uaki o ka ʻohi
  • Hōʻike ka waiwai i loko o nā brackets (%xx) i ka formatter e hoʻohana me nfdump e hōʻike i kēia waiwai (e nānā i ka mokuna aʻe).

Hoihoi i ka ʻike i mālama ʻia

  • Mālama ʻia ka ʻikepili ma /tmp/netflow/nfcapd.yyyymmddHHMM, kahi ʻo yyyymmddHHMM ka manawa hana. Aia pū ka papa kuhikuhi i ka .nfstat file, i hoʻohana ʻia e nānā i ka manawa pau.
  • Mai hoʻololi i kēia file. No ka hoʻonohonoho ʻana i ka pau ʻana e hoʻohana i ka GUI admin.
  • ʻO ka filehiki ke heluhelu ʻia me ka hoʻohana ʻana i ke kauoha nfdump. nfdump [nā koho] [ kānana ]

Hōʻike i nā ʻeke UDP i hoʻouna ʻia e 192.168.88.100:

  • nfdump -r nfcapd.202006011625 'proto udp a me src ip 192.168.88.100'
    • Hōʻike i nā kahe a pau ma waena o 16:25 a me 17:25, e hui pū ana i nā kahe ʻelua (-B):
  • nfdump -R /tmp/netflow/nfcapd.202006011625:nfcapd.202006011725 -B
    • Hōʻike i ke ʻano ʻenehana/ID, ka helu kumu + awa a me ka helu wahi + por no nā kahe a pau:
  • nfdump -r /tmp/netflow/nfcapd.202006011625 -o “fmt:%eng %sap %dap”

Hiki ke hana like me ka Engine ID

  • Hōʻike ʻo Netflow v5 i ʻelua mau mea hōʻike 8-bit: ʻAno ʻenekini a me ID Engine. Hoʻouna ʻo Probe on Advantech routers i ka Engine ID wale nō (0..255). ʻO ka ʻano ʻenekini he zero mau loa (0). No laila, e loaʻa kahi kahe i hoʻouna ʻia me Engine ID = 513 (0x201) ma ke ʻano he ʻano ʻenekini/ID = 0/1.ADVANTECH-Router-App-NetFlow-Pfix-FIG-9
  • Hōʻike ʻo Netflow v9 i kahi mea hōʻike 32-bit. Hiki i ka Probe on Advantech routers ke hoʻouna i kekahi helu 32-bit, pehea nā mea hana ʻē aʻe (e laʻa me Cisco) e hoʻokaʻawale i ka mea hōʻike i ʻelua bytes i mālama ʻia, a ukali ʻia e ka Engine Type a me Engine ID. Hana like ka mea hoʻokipa.
  • No laila, e loaʻa kahi kahe i hoʻouna ʻia me Engine ID = 513 (0x201) ma ke ʻano he ʻano ʻenekini/ID = 2/1.ADVANTECH-Router-App-NetFlow-Pfix-FIG-10
  • Ua wehewehe ʻo IPFIX i kahi mea hōʻike 32-bit. Hiki i ka Probe on Advantech routers ke hoʻouna i kekahi helu 32-bit, akā ʻaʻole mālama ka ʻohi kūloko i kēia waiwai. No laila e loaʻa kekahi kahe e like me ke ʻano ʻenekini/ID = 0/0.ADVANTECH-Router-App-NetFlow-Pfix-FIG-11
  • Manaʻo: Inā makemake ʻoe e mālama i ka ID Engine ma ka ʻohi kūloko, e nānā i ka Store Exporting Engine ID ma ka hoʻonohonoho, e hoʻohana i ka ID Engine <256 a pale i ka hoʻohana ʻana i ka protocol IPFIX.
  • Hoʻopau kaʻa kaʻa
  • Hoʻopuka ka probe i nā kahe holoʻokoʻa, ʻo ia hoʻi nā ʻeke a pau i hui pū ʻia. Inā ʻaʻole ʻike ʻia nā ʻeke no ka manawa i hāʻawi ʻia (Inactive Traffic Timeout), manaʻo ʻia ke kahe ʻana ua piha a hoʻouna ka probe i ka ʻike kaʻa i ka ʻohi.
  • ʻIkepili e pili ana i a file e ʻike ʻia ka hoʻoili ʻana i ka ʻohi ʻohi ke pau ka hoʻoili ʻana, a hiki ke lōʻihi ka manawa. Inā lōʻihi loa ka hoʻouna ʻana (Active Traffic Timeout) e ʻike ʻia ma ke ʻano he mau kahe pōkole.
  • No exampe, me 30 mau minuke kaʻa kaʻa kaʻa manawa, e hōʻike ʻia kahi kamaʻilio 45 mau minuke e like me ʻelua kahe: hoʻokahi 30 min a me hoʻokahi 15 min.

Hoʻopau kaʻa kaʻa

  • Hoʻopuka ka probe i nā kahe holoʻokoʻa, ʻo ia hoʻi nā ʻeke a pau i hui pū ʻia. Inā ʻaʻole ʻike ʻia nā ʻeke no ka manawa i hāʻawi ʻia (Inactive Traffic Timeout), manaʻo ʻia ke kahe ʻana ua piha a hoʻouna ka probe i ka ʻike kaʻa i ka ʻohi.
  • ʻIkepili e pili ana i a file e ʻike ʻia ka hoʻoili ʻana i ka ʻohi ʻohi ke pau ka hoʻoili ʻana, a hiki ke lōʻihi ka manawa. Inā lōʻihi loa ka hoʻouna ʻana (Active Traffic Timeout) e ʻike ʻia ma ke ʻano he mau kahe pōkole. No exampe, me 30 mau minuke kaʻa kaʻa kaʻa manawa, e hōʻike ʻia kahi kamaʻilio 45 mau minuke e like me ʻelua kahe: hoʻokahi 30 min a me hoʻokahi 15 min.ADVANTECH-Router-App-NetFlow-Pfix-FIG-12

Nā Palapala Pili

  • Hiki iā ʻoe ke loaʻa nā palapala e pili ana i ka huahana ma Engineering Portal ma icr.advantech.cz address.
  • No ka loaʻa ʻana o ke alakaʻi hoʻomaka wikiwiki o kāu router, Manual User, Configuration Manual, a i ʻole Firmware, e hele i ka ʻaoʻao Router Models, e ʻimi i ke kumu hoʻohālike i makemake ʻia, a e hoʻololi i ka ʻaoʻao Manuals a i ʻole Firmware.
  • Loaʻa nā pūʻolo hoʻokomo a me nā manual Router Apps ma ka ʻaoʻao Router Apps.
  • No nā Palapala Hoʻomohala, e hele i ka ʻaoʻao DevZone.

Palapala / Punawai

ADVANTECH Router App Net Flow Pfix [pdf] Ke alakaʻi hoʻohana
Pfix Pfix, Pfix Pfix, Pfix Pfix, Pfix, Pfix

Nā kuhikuhi

Nā leka pili

Waiho i kahi manaʻo

ʻAʻole e paʻi ʻia kāu leka uila. Hōʻailona ʻia nā kahua i makemake ʻia *