Trisul Network Analytics
Developer Zone

User Tools

Site Tools

You are here: Home » NetFlow » Simple NetFlow server configuration for ISP
Trace: Developer Zone Simple NetFlow server configuration for ISP Analysis of popular PCAP dumps
netflow:config

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
netflow:config [2025/04/01 17:35] – [Diagram] veeranetflow:config [2025/04/01 17:44] (current) – [DRAC] veera
Line 31: Line 31:
  
 </code> </code>
 +
 +
 +Create and apply the ACL to these IP subnets - these would represent the customers subnets and support IPs of vendor.
 +
 +<code>
 +
 +ip access-list extended RestrictedAccess
 +   permit ip 103.23.228.81 255.255.255.255 any 
 +   permit ip 203.0.118.0 255.255.255.0 any
 +   permit ip 123.23.93.88 255.255.255.255 any
 +   deny ip any way
 +
 +</code>
 +
 +
 +On the Trisul NetFlow server set the other IP in the ''/31'' subnet. Say the interface name is ''eth0''
 +
 +<code>
 +
 + ip addr add 203.0.118.33/31 dev eth0
 + ip route add default via 203.0.118.0 dev eth0 
 +
 +</code>
 +
 +
 +===== DRAC =====
 + 
 +
 +If you wish to use DRAC for remote access then you can configure a second link using the same method.  It is recommended that you disable the port after DRAC activity to prevent unauthorized access. 
 +
 +{{:netflow:connection-ipdr_-_page_2.png?400|}}
 +
 +
 +===== Other options - Management VLAN =====
 +
 +If you have a separate management VLAN , then you can replace the public IP Address with private IP addresses in the management VLAN instead. 
 +
 +
netflow/config.1743509112.txt.gz · Last modified: 2025/04/01 17:35 by veera