Login
- Table of Contents
-
- 17-Network Management and Monitoring Configuration Guide
- 00-Preface
- 01-System maintenance and debugging configuration
- 02-NQA configuration
- 03-NTP configuration
- 04-EAA configuration
- 05-Process monitoring and maintenance configuration
- 06-NETCONF configuration
- 07-Information center configuration
- 08-SNMP configuration
- 09-NetStream configuration
- 10-RMON configuration
- 11-Flow log configuration
- 12-Event MIB configuration
- 13-Packet capture configuration
- 14-Fast log output configuration
- 15-Mirroring configuration
- 16-GOLD configuration
- 17-BFD configuration
- 18-Track configuration
- 19-Interface collaboration configuration
- 20-Process placement configuration
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 09-NetStream configuration | 58.03 KB |
Configuring session-based NetStream
Session-based NetStream aggregation modes
Session-based NetStream data export
Restrictions: Hardware compatibility with session-based NetStream
Restrictions and guidelines: Session-based NetStream configuration
Display and maintenance commands session-based NetStream
Configuring session-based NetStream
About session-based NetStream
Session-based NetStream provides statistics for session-based services and exports the statistics in NetStream v9 format to NetStream servers.
For information about sessions, see session management in Security Configuration Guide.
Session-based NetStream aggregation modes
Session-based NetStream aggregates session statistics according to the aggregation criteria of an aggregation mode and exports the statistics to NetStream servers.
Table 1 lists the available aggregation modes. In each mode, the system merges statistics for multiple sessions if each aggregation criterion is of the same value.
Table 1 Session-based NetStream aggregation modes
|
Aggregation mode |
Aggregation criteria |
|
App aggregation |
Application layer protocol ID. |
|
App-profile aggregation |
· Application layer protocol ID. · Traffic rule ID. |
|
App-user aggregation |
· Application layer protocol ID. · User IP address. |
Session-based NetStream data export
Session-based NetStream uses an aging mechanism to export flow entry statistics to NetStream servers.
When the aging timer for a session-based NetStream entry expires, statistics about the entry is cleared from the cache and exported to the NetStream servers.
When the session-based NetStream cache is full, the device stops generating new flow entries. Statistics collection for existing flow entries is not affected.
A session-based NetStream entry is also exported in the following situations:
· The session itself ages out.
· The session is manually deleted by the administrator.
Restrictions: Hardware compatibility with session-based NetStream
|
Hardware platform |
Module type |
NetStream compatibility |
|
M9006 M9010 M9014 |
Blade IV firewall module |
Yes |
|
Blade V firewall module |
Yes |
|
|
NAT module |
Yes |
|
|
Application delivery engine (ADE) module |
Yes |
|
|
Anomaly flow cleaner (AFC) module |
No |
|
|
M9010-GM |
Encryption module |
Yes |
|
M9016-V |
Blade V firewall module |
Yes |
|
M9008-S M9012-S |
Blade IV firewall module |
Yes |
|
Application delivery engine (ADE) module |
Yes |
|
|
Intrusion prevention service (IPS) module |
Yes |
|
|
Video network gateway module |
Yes |
|
|
Anomaly flow cleaner (AFC) module |
No |
|
|
M9008-S-6GW |
IPv6 module |
Yes |
|
M9008-S-V |
Blade IV firewall module |
Yes |
|
M9000-AI-E8 |
Blade V firewall module |
Yes |
|
Application delivery engine (ADE) module |
Yes |
|
|
M9000-AI-E16 |
Blade V firewall module |
Yes |
Restrictions and guidelines: Session-based NetStream configuration
For session-based NetStream to work, DPI must be enabled on the device. For more information about DPI, see DPI Configuration Guide.
Procedure
1. Enter system view.
system-view
2. Enable session-based NetStream.
session-based netstream enable
By default, session-based NetStream is disabled.
3. Enable session-based NetStream aggregation modes.
session-based netstream aggregation { app | app-profile | app-user } *
By default, all session-based NetStream aggregation modes are disabled.
4. Specify a destination host for session-based NetStream data export.
session-based netstream export host ip-address udp-port [ vpn-instance vpn-instance-name ]
By default, no destination host is specified for session-based NetStream data export.
5. (Optional.) Specify a source IP address for session-based NetStream packets.
session-based netstream export source ip ip-address
By default, the source IP address of session-based NetStream packets is the primary IP address of the output interface.
6. (Optional.) Set the aging timer for cached session-based NetStream entries.
session-based netstream timeout minutes
By default, a session-based NetStream entry is can be cached for 5 minutes before being aged out.
Display and maintenance commands session-based NetStream
Execute display commands in any view.
|
Task |
Command |
|
Display session-based NetStream statistics in the cache. |
display session-based netstream aggregation-cache { app | app-profile | app-user } * |
