Create a Netflow

On the main menu of ZStack Cloud, choose Resource Center > Network Service > Advanced Network Service > Netflow. On the Netflow page, click Create Netflow. Then, the Create Netflow page is displayed.

On the displayed page, set the following parameters:
  • Name: Enter a name for the Netflow.
  • Description: Optional. Enter a description for the Netflow.
  • IP: Specify the IP address of a receiver.
  • Port: Specify the port of a receiver.
    Note: Make sure that the configured IP and port suite of the receiver is correct. Otherwise, the Netflow service may not work as expected.
  • Version: Select a Netflow version.
    Note: The output data format varies depending on the NetFlow version. Select a Netflow version based on your business requirements.
  • Export Interval: Set the interval that a Netflow sends data monitor information to the receiver.
  • Routing Configuration: Optional. Set the VPC vRouters and networks that you want to monitor. You can also set the routing configurations after the Netflow is created.
    If you set this parameter, you need to:
    • Select one or more VPC vRouters that you want to monitor.
    • Select one or more networks that you want to monitor.
Figure 1. Create Netflow


Considerations

  • You can use a Netflow to monitor traffic flows of multiple networks associated with multiple VPC vRouters. However, traffic flows of all networks associated with a VPC vRouter can be monitored by using only one Netflow.
  • Make sure the IP address and port suite of the receiver you configure is correct. Otherwise, packets may be lost during data collection.
  • You can use a Netflow to collect east-west and north-south traffic of a VPC vRouter. However, if you enable distributed routing for a VPC vRouter, east-west traffic may be optimized and thus cause data loss during collection.
  • If you use a Netflow to monitor VPC vRouters in a VPC HA group, the Netflow continually monitors the network traffic of the primary VPC vRouter to ensure data integrity.
  • If you use a Netflow to monitor network traffic of a VPC vRouter, the performance of the VPC vRouter is compromised. You can customize a monitor plan best suited your business to lower the impact on VPC vRouter performance.
    • The more VPC networks that a Netflow monitors, the greater the impact on VPC vRouter performance.
    • The shorter the export interval, the greater the impact on VPC vRouter performance and the higher the pressure on business network bandwidth.
    • A stable network is required for accessing the receiver through the public network of a VPC vRouter, thus ensuring that the Netflow service works as expected.