netstat.netflow
- Juan Tomás Alonso Nieto (Deactivated)
- Borja Moro Moreno
- Former user (Deleted)
Introduction
The tags beginning with netstat.netflow identify NetFlow event data.
Valid tags and data tablesÂ
The full tag must have 3 levels. The first two are fixed as netstat.netflow. The third level identifies the type of events sent.
These are the valid tags and corresponding data tables that will receive the parsers' data:
Product / Service | Tags | Data tables |
|---|---|---|
NetFlow traffic |
|
|
|
| |
|
|
For more information, read more about Devo tags.
Sending to Devo
NetFlow traffic should be forwarded to the dedicated, preconfigured NetFlow port 12999 on a Devo Relay for v7 and earlier. For v9 and later, Netflow traffic should be forwarded to the dedicated, preconfigured NetFlow port 12998 but it also needs an additional decoder installed (please contact Devo for this). All events received on these ports are tagged accordingly and forwarded securely to the Devo Cloud.