Hello the list, I'm newbie in pmacct and i get a few questions about the sflow & BGP with pmacct.
My goal is to log in a mysql database, the information from one of my core router to be able to view at least : as_src, as_path, peer_as_src & packets I didn't understood all the documentation... Do I need to use pmacctd ? It seems not necessary because sfacctd is able to launch BGP thread and log to mysql. What's the need of the pmacctd process in my case ? The logging to the MySQL db is working correctly but a lot of information are missing : DEBUG ( default/mysql ): INSERT INTO `acct_bgp` (stamp_updated, stamp_inserted, as_src, as_dst, as_path, local_pref, med, peer_as_src, peer_as_dst, peer_ip_src, peer_ip_dst, agent_id, comms, packets, bytes) VALUES (FROM_UNIXTIME(1256724001), FROM_UNIXTIME(1256723400), 34383, 0, '', 100, 0, 0, 0, '192.168.5.1', 'WAN_IP', 0, '', 2, 509) As you can see, in my configuration below, i've set the bgp update-source IP the same than sflow agent-ip. Is it enough to able to match informations between sflow & bgp ? How can I see than the match is working ? On startup of sfacctd, I can see that the BGP session is established correctly. The only doubt I have is in the debug log [Id: ROUTER_ID] where ROUTER_ID is the router-id wich is different of update-source IP. (I cannot change it), in the documentation the match between sflow & BGP is done with the source IP address from BGP & sflow, so the router-id seems not useful except for more clear log messages. Correct ? Some information are available in sflow (viewed with sflowtool) like my_as,src_peer_as but are not logged. Why ? Because we wait them from the BGP ? My configuration : Version : pmacct from CVS repo-0.12 IP router: 192.168.5.1 IP pmacct: 192.168.5.2 Configuration sfacctd.conf : daemonize: true plugins: mysql sql_refresh_time: 120 sql_history: 10m sql_history_roundoff: mh sql_table_version: 1 sql_table_type: bgp bgp_daemon: true bgp_daemon_ip: 192.168.5.2 bgp_daemon_max_peers: 100 bgp_aspath_radius: 3 sfacctd_as_new: bgp aggregate: tag, src_as, dst_as, peer_src_as, peer_dst_as, peer_src_ip, peer_dst_ip, local_pref, as_path BGP Router : neighbor 192.168.5.2 remote-as My_AS_Number neighbor 192.168.5.2 description monitoring neighbor 192.168.5.2 update-source 192.168.5.1 neighbor 192.168.5.2 route-reflector-client neighbor 192.168.5.2 send-community Sflow on router (with sflow forwarding on 2 interfaces [my 2 transit peers]): show sflow sFlow version: 5 sFlow services are enabled. sFlow agent IP address: 192.168.5.1 Collector IP 192.168.5.2, UDP 6343 Polling interval is 20 seconds. Configured default sampling rate: 1 per 512 packets. Actual default sampling rate: 1 per 512 packets. The maximum sFlow sample size: 128. sFlow exporting cpu-traffic is disabled. 50638 UDP packets exported 119992 sFlow samples collected. sFlow ports: ethe 1/1 ethe 3/12 Module Sampling Rates --------------------- Slot 1 configured rate=512, actual rate=512 Slot 3 configured rate=512, actual rate=512 Port Sampling Rates ------------------- Port=1/1, configured rate=512, actual rate=512, Subsampling factor=1 Port=3/12, configured rate=512, actual rate=512, Subsampling factor=1 When all will be up, I will be able to post on the wiki a complete configuration step by step for this exact configuration. Thanks for any advice, Regards, -- Maxence Rousseau [email protected] ATE - Avenir Télématique http://www.ate.info +33(0)3.28.800.300 _______________________________________________ pmacct-discussion mailing list http://www.pmacct.net/#mailinglists
