[no] cflowd
config>cflowd
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
Commands in this context configure cflowd.
The no form of this command removes all configuration under cflowd, including all configured collectors. The no form can only be executed if cflowd is shut down.
no cflowd
active-timeout minutes
no active-timeout
config>cflowd
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command configures the maximum amount of time before an active flow is aged out of the active cache. If a specific flow is active for the configured amount of time, the flow is aged out and a new flow is created on the next packet sampled for that flow.
If the minutes parameter is changed while cflowd is active, the existing flows do not inherit the new active timeout value. The active timeout value for a flow is set when the flow is first created in the active cache table; the value does not change dynamically.
The no form of this command resets the inactive timeout back to default value.
active-timeout 30
Specifies the value, expressed in minutes, before an active flow is exported.
cache-size num-entries
no cache-size
config>cflowd
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command specifies the maximum number of active entries maintained in the flow cache table.
The no form of this command reverts the number of active entries to the default value.
cache-size 65536
Specifies the maximum number of entries maintained in the cflowd cache.
collector ip-address[:port] [version version]
no collector ip-address[:port]
config>cflowd
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command defines a flow data collector for cflowd data. The IP address of the flow collector must be specified.
If the optional UDP port number parameter is not configured, default port 2055 is used for all collector versions. To connect to an IPFIX (version 10) collector using the IPFIX default port, specify port 4739 when configuring the collector. The version must be specified. A maximum of five collectors can be configured.
The no form of this command removes the flow collector definition from the configuration and stops the export of data to the collector. The collector must be shut down before it can be deleted.
Specifies the address of a remote cflowd collector host that will receive the exported cflowd data.
Specifies the UDP port number on the remote cflowd collector host that will receive the exported cflowd data.
Specifies the version of the flow data collector.
[no] aggregation
config>cflowd>collector
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command enables data aggregation for the collector and commands in this context configure the aggregation types.
To configure aggregation, you must choose the aggregation scheme: autonomous system, destination prefix, protocol port, raw, source destination, or source prefix.
This command can only be configured if the collector version is configured as Version 8.
The no form of this command removes all aggregation types from the collector configuration.
no aggregation
[no] as-matrix
config>cflowd>collector>aggregation
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command enables cflowd aggregation based on autonomous system (AS) information. An AS matrix contains packet and byte counters for traffic from either source-destination ASs or last-peer to next-peer ASs.
The no form of this command removes this type of aggregation from the collector configuration.
no as-matrix
[no] destination-prefix
config>cflowd>collector>aggregation
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command enables cflowd aggregation based on destination prefix information.
The no form removes this type of aggregation from the collector configuration.
no destination-prefix
[no] protocol-port
config>cflowd>collector>aggregation
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command enables cflowd aggregation based on the IP protocol, source port number, and destination port number.
The no form of this command removes this type of aggregation from the collector configuration.
no protocol-port
[no] raw
config>cflowd>collector>aggregation
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command enables the sending of raw (unaggregated) flow data in Version 5.
The no form of this command removes this type of aggregation from the collector configuration.
no raw
[no] source-destination-prefix
config>cflowd>collector>aggregation
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command configures cflowd aggregation based on source and destination prefixes.
The no form of this command removes this type of aggregation from the collector configuration.
no source-destination-prefix
[no] source-prefix
config>cflowd>collector>aggregation
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command configures cflowd aggregation based on source prefix information.
The no form of this command removes this type of aggregation from the collector configuration.
no source-prefix
autonomous-system-type {origin | peer}
config>cflowd>collector
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command configures whether the AS information included in the flow data is based on the originating AS or external peer AS of the routes.
This option is supported only if the collector is configured as Version 5 or Version 8.
autonomous-system-type origin
Keyword to specify that the AS information included in the flow data is based on the originating AS.
Keyword to specify that the AS information included in the flow data is based on the peer AS.
description description-string
no description
config>cflowd>collector
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command creates a text description stored in the configuration file for a configuration context.
The no form of this command removes the description string from the context.
Specifies the description character string, up to 80 characters composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, and so on), the entire string must be enclosed within double quotes.
[no] shutdown
config>cflowd
config>cflowd>collector
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command administratively disables an entity. When disabled, an entity does not change, reset, or remove any configuration settings or statistics.
The operational state of the entity is disabled, as well as the operational state of any entities contained within. Many objects must be shut down before they can be deleted.
Unlike other commands and parameters where the default state is not indicated in the configuration file, the shutdown and no shutdown states are always indicated in system-generated configuration files.
The no form of this command administratively enables an entity.
no shutdown
template-set {basic | mpls-ip}
config>cflowd>collector
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command configures the set of templates sent to the collector when using cflowd Version 9 or Version 10.
template-set basic
Keyword to send basic flow data.
Keyword to send extended flow data that includes IP and MPLS flow information.
export-mode [automatic | manual]
config>cflowd
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command configures how exports are generated by the cflowd process.
The default behavior is for flow data to be exported automatically based on the active and inactive time-out values. In manual mode, flow data is exported only when the tools perform cflowd manual-export command is issued. The only exception is if the cflowd cache overflows, in which case the normal automatic export process is used.
export-mode automatic
Keyword to automatically generate cflowd flow data.
Keyword to export cflowd flow data only when manually triggered.
inactive-timeout seconds
no inactive-timeout
config>cflowd
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command configures the amount of time, in seconds, that must elapse without a packet matching a flow before the flow is considered inactive.
If the seconds parameter is changed while cflowd is active, the existing flows do not inherit the new inactive timeout value. The inactive timeout value for a flow is set when the flow is first created in the active cache table; the value does not change dynamically.
The no form of this command reverts the inactive timeout to the default value.
inactive-timeout 15
Specifies the amount of time, in seconds, that must elapse without a packet matching before the flow is considered inactive
overflow percent
no overflow
config>cflowd
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command specifies the percentage of the flow cache entries removed when the maximum number of entries is exceeded. Entries that have not been updated for the longest amount of time are removed.
The no form of this command reverts the number of entries cleared from the flow cache on overflow to the default value.
overflow 1
Specifies the percentage of the flow cache entries removed when the maximum number of entries is exceeded.
rate sample-rate
no rate
config>cflowd
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command specifies the rate (N) at which traffic is sampled and sent for flow analysis. A packet is sampled every N packets. For example, if sample-rate is configured as 1, all packets are sent to the cache. If sample-rate is configured as 100, one out of every 100 packets is sent to the cache.
On the 7210 SAS, when cflowd is enabled on an IP interface, the sampling rate is applied to a port and only the samples that match the IP interface for which cflowd is enabled are processed further to update or create flow records in the flow cache. Samples received that do not match the IP interface for which cflowd is enabled are not processed further, and flow records are not created for them.
The no form of this command reverts the sample rate to the default value.
rate 1000
Specifies the rate at which traffic is sampled.
template-retransmit seconds
no template-retransmit
config>cflowd
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command specifies the interval for sending template definitions.
template-retransmit 600
Specifies the interval, in seconds, between the sending of template definitions.
[no] use-vrtr-if-index
config>cflowd
7210 SAS-Mxp and 7210 SAS-Sx/S 1/10GE (standalone)
This command exports flow data using interface indexes (ifIndex values), which can be used directly as the index into the IF-MIB tables for retrieving interface statistics.
Specifically, if this command is enabled, the ingressInterface (ID=10) and egressInterface (ID= 14) fields in IP flow templates, which are used to export the flow data to cflowd Version 9 and Version 10 collectors, is populated with the IF-MIB ifIndex of that interface. In addition, for Version 10 templates, two fields are available in the IP flow templates to present the virtual router ID associated with the ingress and egress interfaces.
The no form of this command removes the command from the active configuration and causes cflowd to revert to the default behavior of populating the ingress and egress interface ID with the global IF index ID.
no use-vrtr-if-index