Two configuration files exist that control the processing and display of netflow data. Both files are located in conf under the installation directory. The default installation directory is /opt/terapaths-monitoring.
The files are
Configuration File |
Description |
|---|---|
flowscan.cf |
Base file processing and system configuration |
JKFlow.xml |
Site specific subnet and processing configurations |
flowscan.cf
This file specifies the location of the netflow files to be processed and some system wide configurations such as Syslog facilities and the poll frequency to find new netflow files.
Variable |
Description |
Default |
|---|---|---|
FlowFileGlob |
The location and wildcard of netflow files |
/var/flows/flows/ft-v05. |
ReportClasses |
Flowscan modules to use for netflow data processing |
JKFlow |
WaitSeconds |
The poll time to wait for new files into that defined in |
30 |
Verbose |
|
1 |
SyslogFacility |
The local syslog facility to use for logs |
local2 |
# flowscan Configuration Directives ############################################ # FlowFileGlob (REQUIRED) # use this glob (file pattern match) when looking for raw flow files to be # processed, e.g.: FlowFileGlob /var/flows/flows/*ft-v05.* # ReportClasses (REQUIRED) # a comma-seperated list of FlowScan report classes, e.g.: ReportClasses JKFlow # WaitSeconds (OPTIONAL) # This should be <= the "-s" value passed on the command-line to cflowd, e.g.: WaitSeconds 30 # Verbose (OPTIONAL, non-zero = true) Verbose 1 # SyslogFacility (REQUIRED) # defines the syslog facility to use for logging purposes # use STDOUT to not log to syslog SyslogFacility local2