Configuring Flow Exports on Juniper Devices
For NetFlow analysis, you need to configure your devices to export flows to Site24x7 On-Premise Poller, which is the NetFlow collector. The On-Premise Poller will be listening to the particular port to receive flows. Learn how to find the port number of your On-Premise Poller.
jFlow v5 and v8 configuration
To enable sampling and to export the flow records (cflowd/JFlow) to specific destination address, follow the below commands:
forwarding-options {
sampling {
input {
family inet {
rate 100;
run-length 9;
max-packets-per-second 7000;
}
}
{
cflowd <destination address>{
port <port number>;
source-address <source address>;
version <version number>;
no-local-dump;
autonomous-system-type origin;
}
}
}
}
sampling {
input {
family inet {
rate 100;
run-length 9;
max-packets-per-second 7000;
}
}
{
cflowd <destination address>{
port <port number>;
source-address <source address>;
version <version number>;
no-local-dump;
autonomous-system-type origin;
}
}
}
}
To enable packet sampling on particular interfaces, follow the steps below:
interfaces {
ge-1/3/0 {
vlan-tagging;
unit 101 {
vlan-id 101;
family inet {
sampling {
input;
output;
}
address 206.80.253.26/25
}
}
}
}
ge-1/3/0 {
vlan-tagging;
unit 101 {
vlan-id 101;
family inet {
sampling {
input;
output;
}
address 206.80.253.26/25
}
}
}
}
For more information and v9 configuration, refer to Juniper's official documentation.
sFlow configuration
Configure sFlow on Juniper devices using the following commands:
protocols {
sflow {
polling-interval 30;
sample-rate 500;
collector 10.1.2.5 {
udp-port 9996;
}
interfaces ge-0/0/0.0;
interfaces ge-0/0/1.0;
interfaces ge-0/0/2.0;
interfaces ge-0/0/3.0;
interfaces ge-0/0/11.0;
}
}
sflow {
polling-interval 30;
sample-rate 500;
collector 10.1.2.5 {
udp-port 9996;
}
interfaces ge-0/0/0.0;
interfaces ge-0/0/1.0;
interfaces ge-0/0/2.0;
interfaces ge-0/0/3.0;
interfaces ge-0/0/11.0;
}
}