Netflow

Netflow is a network protocol used for analyzing and monitoring inbound and outbound traffics for VPC vRouter NICs. Currently, two types of data stream output format are supported: Netflow V5 and Netflow V9.

Add Netflow

In the navigation pane of the ZStack Private Cloud UI, choose Network Service > Netflow. On the Netflow page, click Create Netflow. On the displayed Create Netflow page, set the following parameters:
  • Name: Enter a name for the Netflow.
  • Description: Optional. Enter a description for the Netflow.
  • IP: Enter the IP address of the collector.
  • Port: Enter the port of the collector.
    Note: Both IP and port of the collector must be configured correctly to ensure the Netflow service to work properly.
  • Version: Select a Netflow version.
    Note: Different versions of Netflow have different output formats. Please choose the appropriate version.
  • Export Interval: Set the flow export interval. After specified, the Netflow will send a flow monitoring message to the collector according to the set time.
  • VPC vRouter: Select the VPC vRouter and network to be monitored.
As shown in Figure 1.
Figure 1. Add Netflow


Notice

  • One Netflow can monitor the traffics of multiple networks on multiple VPC vRouters. All networks of a VPC vRouter can only attach the same Netflow.
  • Both IP and port of the collector must be configured correctly. Otherwise, the collected data might be lost.
  • A Netflow can collect the north-south traffics of a VPC vRouter and the east-west traffics across the network. In the distributed routing mode, data collected from the east-west traffics across the network might be distorted to performance optimization.
  • When a Netflow monitors the routers in a VPC high availability group, it will continuously monitor the network traffics of the primary router to ensure data integrity.
  • When a Netflow monitors the network traffics of a VPC vRouter, it will consume the performance of the VPC vRouter. Please select an appropriate monitoring solution to reduce the impact on the performance of the VPC vRouter. The associations between Netflow monitoring and impact on the VPC vRouter performance are as follows:
    • The greater the number of VPC networks monitored by a Netflow reach, the greater the impact on the performance of the VPC vRouter has.
    • The smaller the export interval is, the greater the impact on the performance of the VPC vRouter exerts, and the greater the pressure on the service network bandwidth has.
    • You need to use a stable network, so that the public network of the VPC vRouter can access the collector, ensuring that the Netflow service works properly.