Configuring Network Traffic Using IP Flow Information Export (IPFIX)

The IP Flow Information Export (IPFIX) protocol allows clients to easily monitor network traffic to and from the node. IPFIX exports IP flow information from Branch Gateways and other network devices, such as switches, and routers to network monitoring and analysis applications known as collector systems. This information is cached on the gateway, and then exported to an assigned collector server within the node. This information is then logged and stored by the collector server for viewing.

To configure IPFIX on gateways, complete the following steps:

  1. Select either of the following options:
    • To configure a Branch Gateway group:
      1. Set the filter to a group containing at least one Branch Gateway.

        The dashboard context for the group is displayed.

      2. Under Manage, click Devices > Gateways.

        A list of gateways is displayed in the List view.

      3. Click Config.

        The configuration page is displayed for the selected group.

    • To configure a Branch Gateway:
      1. Set the filter to Global or a group containing at least one Branch Gateway.
      2. Under Manage, click Devices > Gateways.

        A list of gateways is displayed in the List view.

      3. Click a gateway under Device Name.

        The dashboard context for the gateway is displayed.

      4. Under Manage, click Device.

        The gateway device configuration page is displayed.

  2. If you are in the Basic Mode, click Advanced Mode to access the advanced configuration options.
  3. Click System > External Monitoring.
  4. Expand IP Flow Information Export (IPFIX) and configure the parameters described in Table 1.
  5. Click Save Settings.

The following table displays the IPFIX configuration parameters:

Table 1: IPFIX Configuration Parameters

Parameter

Description

Enable IPFIX

Enable IP Flow Information Export.

Collector IP Address

Specify the IP address of the device in this field.

When a device belonging to a node exports a cache, it is sent to the designated collector device in that node. The collector device receives, logs, and stores the data from the other devices in the node.

Transport Mode

Select one of the following transfer protocols from the drop-down list:

udp

tcp

Port

Specify a destination port number.

Clients can assign a destination port on the collector device to direct incoming data caches from other devices in the node.

Flow Cache Size

Specify the maximum number of entries in a cache before it is exported to the collector device.

Upload Interval (all)

Specify the interval time (in minutes) to export active sessions.

Upload Interval (inactive)

Specify the interval time (in minutes) to export inactive flows.

Upload Interval (template)

Specify the interval time (in minutes) to export templates.

Observation Domain

Specify the value used by the collector device to group devices when receiving data sessions.