Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

  1. Kemp Support
  2. Knowledge Base
  3. Flowmon General
  4. Flowmon OS

Missing flow data

Updated

 

Information

 

Summary:

Possible causes of missing flow data on Collector from 3rd party flow source device.
Environment:

Product: FOS

Version: Any

Platform: Any
Question/Problem Description:

Why we cannot see new incoming flow data on the Collector?
Steps to Reproduce:  
Error Message:  
Defect Number:  
Enhancement Number:  
Cause: Configuration of flow source was changed or is incorrect.
Resolution:

1. Verify that is selected correct source for sending flow data.

2. Check flow export configuration (flow filters, templates)

e.g. commands for Cisco routers:

show policy-map type mace
show flow exporter name
show flow exporter template
show flow record type mace name
show flow monitor type mace name
show flow exporter template
show cef interface name
show mace metrics
show policy-map type mace interface name
show flow exporter option application table
show ip nbar parameter extraction
3. Run on Collector tcpdump command and verify that flow source is also sending flow records
tcpdump -i eth0 -w /data/tmp/flow_record.pcap 'host <flow_source_IP> and port <listening_port>'

Templates only - pcap example:

MicrosoftTeams-image (47).png
Workaround:  
Notes:

Netflow Export Configuration:
https://support.kemptechnologies.com/hc/en-us/articles/4405966111629-NetFlow-Export-Configuration
Was this article helpful?
0 out of 0 found this helpful

Comments

In this document