OpenWRT (softflowd)
Softflowd is a flow-based network traffic analyzer that can be used to export flow data using NetFlow protocol. To configure softflowd on an OpenWRT router, follow these steps:
Install softflowd
First, you need to install the softflowd package on your OpenWRT router. Connect to the router via SSH or use the built-in terminal in the LuCI web interface. Once connected, run the following command to update the package list and install softflowd:
Configure softflowd
To configure softflowd, you need to create a configuration file. The default configuration file is located at /etc/config/softflowd. You can create and edit this file using the vi editor or another text editor of your choice:
Add the following lines to the configuration file, replacing the example values with your specific configuration:
Replace br-lan with the interface you want to monitor, and 192.168.1.2:2055 with the IP address and port number of your ElastiFlow Unified Flow Collector. Adjust other options as needed.
Start softflowd
To start softflowd, run the following command:
Enable softflowd on startup
To ensure that softflowd starts automatically when the router boots, run the following command:
Verify softflowd is running
To verify that softflowd is running and exporting flow data, you can check the status with the following command:
Once you have completed these steps, softflowd will start exporting flow data to the ElastiFlow Unified Flow Collector. Make sure your flow collector is set up to receive and process the exported data for analysis and monitoring purposes.