Login



Welcome, Guest
Please Login or Register.    Lost Password?
Unleash Networks Forum
Unleash Networks Forums
Unsniff Users

Trisul - Netflow ICMP issue
(1 viewing) (1) Guest
All your questions answered real quick by Unleash Networks Engineers.
Go to bottom
Post Reply
Post New Topic
Page: 1
TOPIC: Trisul - Netflow ICMP issue
#267
Trisul - Netflow ICMP issue 7 Months, 1 Week ago Karma: 1
When Trisul is in NETFLOW_TAP mode, the server running Trisul may send ICMP Type 3, Destination Unreachable Port Unreachable packets back to the router.

The reason is :

1. Trisul does not depend on the UDP service to process Netflow packets, it picks it up from unix rx ring sockets or libpcap.

The best solution is to disable outgoing icmp 3

Code:
iptables -A OUTPUT -p icmp --icmp-type 3 -j DROP


An alternative solution : Just run a dummy server that opens a UDP port and sits there.
Code:

require 'socket'
UDPSocket.new.bind(nil,6343)
Enter code here   
Please note: although no board code and smiley buttons are shown, they are still usable.
vivek [unleash]
Senior Boarder
Posts: 52
graph
User Offline Click here to see the profile of this user
Last Edit: 2010/02/02 10:07 By vivek [unleash].
Reply Quote
Vivek R
Unleash Networks
Support : www.unleashnetworks.com/forums
  
Go to top
Post Reply
Post New Topic
Page: 1
Unleash Networks Forum
Unleash Networks Forums
Unsniff Users
Powered by Kunenaget the latest posts directly to your desktop

Sitemap | Privacy

Copyright (c) 2009-10 Unleash Networks