flow analysis for juniper devices

• Previous message (by thread): flow analysis for juniper devices
• Next message (by thread): flow analysis for juniper devices
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, Nov 14, 2010 at 12:07:40PM +1000, Mehmet Akcin wrote:
> hey there
> 
> any recommendations on freeware flow analysis tool which can show the 
> flow not only per prefix basis but also show asn and/or country/region 
> as well? Juniper only.
> 
> feel free to contact on/off list.

Juniper's flow export is just like everyone else's (*), so any tool will 
do the same thing. Country/region analysis would depend on third party 
geolocation services, which have nothing to do with netflow. :)

(*) Well, except M/T/MX only support NetFlow v5/v8 in the free software 
based sampling mode, you need an expensive services card and software 
license to do v9 for some reason.

Oh and the sFlow on EX is actually pretty cripled when used for routing. 
It's missing support for a bunch of important extended message tpes, and 
doesn't fully populate all of the fields of the message types it does 
send. For example you won't get any data on ASNs, nexthops, dest 
ifindexes, or even netmasks of the src/dst route the flow matched, 
making it pretty darn useless for a lot of tasks. It's functional if 
you're just analyzing L2 networks at any rate.

-- 
Richard A Steenbergen <ras at e-gerbil.net>       http://www.e-gerbil.net/ras
GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1 2CBC)

• Previous message (by thread): flow analysis for juniper devices
• Next message (by thread): flow analysis for juniper devices
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]