This command creates a text description stored in the configuration file for a configuration context.
The no form of this command removes the description string from the context.
no description
This command administratively disables the entity. When disabled, an entity does not change, reset, or remove any configuration settings or statistics.
The operational state of the entity is disabled as well as the operational state of any entities contained within. Many objects must be shut down before they can be deleted.
The no form of this command administratively enables the entity.
Unlike other commands and parameters where the default state is not indicated in the configuration file, the shutdown and no shutdown states are always indicated in system-generated configuration files.
no shutdown
This command enables the context to configure Cflowd.
The no form of this command removes all configuration under the cflowd context. This command can only be executed if Cflowd is in a shutdown state.
no cflowd
This command configures the maximum amount of time before an active flow is aged out of the Cflowd cache. If an individual flow is active for this amount of time, the flow is aged out and exported. A new flow is created on the next packet sampled for that flow.
If the active-timeout value is changed while Cflowd is active, existing flows do not inherit the new value. The active-timeout value for a flow is set when the flow is first created in the Cflowd cache table and does not change dynamically.
The no form of this command resets the active timeout to the default value.
active-timeout 30
This command specifies the maximum number of active flows to maintain in the flow cache table.
The no form of this command resets the number of active entries to the default value.
cache-size 65536
This command defines a flow data collector for Cflowd data. The IP address of the flow collector must be specified. The UDP port number is an optional parameter, but if it is not set, the default of 2055 is used for all collector versions. The version must be specified when a collector is first configured. To connect to a version 10 (IPFIX) collector using the IPFIX default port, specify port 4739 when configuring the collector. A maximum of five collectors can be configured.
The no form of this command removes the flow collector definition from the configuration and stops the export of data to the collector. The collector must be shut down to be deleted.
No Cflowd collector is configured by default.
ipv4-address | a.b.c.d |
ipv6-address | x:x:x:x:x:x:x:x (eight 16-bit pieces) |
x:x:x:x:x:x:d.d.d.d | |
x: [0 to FFFF]H | |
d: [0 to 255]D |
This command specifies the set of templates sent to the collector when using Cflowd version 9 or version 10. The Layer 2 (Ethernet) template (l2-ip keyword) is only applicable for collectors using Cflowd version 10 and is only used for flows sampled on Epipe or VPLS services
template-set basic
This command controls how exports are generated by the Cflowd process. The default behavior is for flow data to be exported automatically based on the active and inactive timeout values. If manual mode is used, case flow data is only exported when the tools>perform>cflowd>manual-export command is issued. The only exception is if the Cflowd cache overflows, in which case, the automatic export process is used.
export-mode automatic
This command specifies the amount of time, in seconds, that must elapse without a packet matching a flow in order for the flow to be considered inactive.
The no form of this command reverts to the default inactive timeout value.
If the inactive-timeout value is changed while Cflowd is active, existing flows do not inherit the new value. The inactive-timeout value for a flow is set when the flow is first created in the active cache table and does not change dynamically.
inactive-timeout 15
This command specifies the percentage of the flow cache entries removed when the maximum number of entries is exceeded. The entries removed are the entries that have not been updated for the longest amount of time.
The no form of this command reverts to the default value.
overflow 1
This command specifies the rate (N) at which traffic is sampled and sent for flow analysis. A packet is sampled every N packets; for example, when sample-rate is configured as 1, all packets are sent to the cache. When sample-rate is configured as 100, every 100th packet is sent to the cache.
The no form of this command resets the sample rate to the default value.
rate 1000
This command specifies the interval at which template definitions are sent to the collector.
template-retransmit 600
This command is used to export flow data using interface indexes (ifindex values), which can be used directly as the index into the IF-MIB tables for retrieving interface statistics. If this command is enabled, the ingressInterface (ID=10) and egressInterface (ID= 14) fields in IP flow templates used to export the flow data to Cflowd version 9 and version 10 collectors will be populated with the IF-MIB ifindex of that interface. In addition, for version 10 templates, two fields are available in the IP flow templates to specify the virtual router ID associated with the ingress and egress interfaces.
The no form of this command causes Cflowd to return to the default behavior of populating the ingress and egress interface IDs with the global interface index IDs.
no use-vrtr-if-index
The following command outputs are examples only; actual displays may differ depending on supported functionality and user configuration.
This command displays the administrative and operational status of data collectors.
The following outputs are examples of Cflowd collector information:
Label | Description |
Host Address | The IP address of a remote Cflowd collector host to receive the exported Cflowd data |
Port | The UDP port number on the remote Cflowd collector host to receive the exported Cflowd data |
Ver | The configured version for the associated collector |
AS Type | The style of AS reporting used in the exported flow data. AS Type is not applicable to Cflowd version 9 or version 10. |
Admin | The configured administrative state for this Cflowd remote collector host |
Oper | The current operational status of this Cflowd remote collector host |
Sent | The number of packets (P) or records (R) that have been transmitted to this remote collector host |
Collectors | The total number of collectors using this IP address |
Label | Description |
Address | The IP address of a remote Cflowd collector host to receive the exported Cflowd data |
Port | The UDP port number on the remote Cflowd collector host to receive the exported Cflowd data |
Description | A user-provided descriptive string for this Cflowd remote collector host. |
Version | The version of the flow data sent to the collector |
AS Type | The style of AS reporting used in the exported flow data. AS Type is not applicable to Cflowd version 9 or version 10. |
Admin State | The configured administrative state for this Cflowd remote collector host |
Oper State | The current operational status of this Cflowd remote collector host |
Packets Sent | The number of packets sent to the collector |
Records Sent | The number of Cflowd records that have been transmitted to this remote collector host |
Last Changed | The time that this row entry was last changed |
Last Pkt Sent | The time that the last Cflowd packet was sent to this remote collector host |
Template Set | The type of Cflowd template |
Traffic Type | The type of traffic flow that was sampled by Cflowd |
Template Sent | The date and time that the Cflowd template was last sent |
Sent | The number of packets with flow data sent to the associated collector |
Open | The number of partially filled packets that have some flow data but are not yet filled or have been timed out (60 s maximum) |
Errors | This counter increments when there was an error during exporting of the collector packet. The most common reason is a UDP unreachable destination for the configured collector. |
This command displays the administrative and operational status of the interfaces with Cflowd enabled.
The following output is an example of Cflowd interface information, and Table 117 describes the fields.
Label | Description |
Interface | The physical port identifier |
IPv4 Address | The primary IPv4 address for the associated IP interface |
IPv6 Address | The primary IPv6 address for the associated IP interface |
Router | The virtual router index (Base = 1) |
IF Index | The Global IP interface index |
Type/Dir Samp | The Cflowd sampling type and direction |
Admin | The administrative state of the interface |
Oper IPv4 | The operational state for IPv4 sampling |
Oper IPv6 | The operational state for IPv6 sampling |
This command displays information about the administrative and operational status of Cflowd on Layer 2 services.
The following output is an example of Cflowd status information, and Table 118 describes the fields.
Label | Description |
ServiceID | The service identifier |
Type | The service type |
SAP | The SAP identifier |
Admin | The administrative state of the Layer 2 service |
Oper | The operational state of the Layer 2 service |
No. of SAPs | The total number of SAPs |
This command displays information about the administrative and operational status of Cflowd.
The following output is an example of Cflowd status information, and Table 119 describes the fields.
Label | Description |
Cflowd Admin Status | The configured administrative state for this Cflowd remote collector host |
Cflowd Oper Status | The current operational status of this Cflowd remote collector host |
Cflowd Export Mode | Controls how exports are handled by the Cflowd process: Automatic or Manual |
Active Timeout | The maximum amount of time, in minutes, before an active flow will be exported. |
Inactive Timeout | The amount of time, that must elapse without a packet matching a flow in order for the flow to be considered inactive |
Template Retransmit | The time in seconds before template definitions are sent |
Cache Size | The maximum number of active flows to be maintained in the flow cache table |
Overflow | The Percentage Of Flows To Be Flushed When The Flow Cache Size Has Been Exceeded |
Sample Rate | The rate at which traffic is sampled and forwarded for Cflowd Analysis |
Aggregation Summary | Not currently supported on the 7705 SAR |
VRtr If Index Context | Indicates the ifindexes used to populate the flow records: “global” means that the flow records will be populated using the global interface IDs; “vrtr” means that the interface IDs from the IF-MIB will be used |
Active Flows | The current number of active flows being collected |
Dropped Flows | The total number of flows dropped due to cache overflow events |
Total Pkts Rcvd | The total number of packets sampled and forwarded for Cflowd analysis |
Total Pkts Dropped | The total number of Cflowd sample reports dropped due to cache overflow or processor overload |
Overflow Events | The number of times the active cache overflowed |
Flows Created | The number of times a flow was created; aggregated flow statistics are not currently supported on the 7705 SAR |
Flows Matched | The number of times a packet was matched to a flow; aggregated flow statistics are not currently supported on the 7705 SAR |
Flows Flushed | The total number of flows that have been flushed from the system; aggregated flow statistics are not currently supported on the 7705 SAR |
Version | The Cflowd version |
Status | The status of the collector: Enabled or Disabled |
Sent | The number of packets with flow data sent to the associated collector |
Open | The number of partially filled packets that have some flow data but are not yet filled or have been timed out (60 s maximum) |
Errors | This counter increments when there was an error during exporting of the collector packet. The most common reason is a UDP unreachable destination for the configured collector. |
This command clears the raw flow caches that are sending flow data to the configured collectors. This action triggers all the flows to be discarded. The cache restarts flow data collection from a fresh state. This command also clears global statistics and collector statistics that are displayed using Cflowd show commands.
n/a