What is this?

This knowledgebase contains questions and answers about PRTG Network Monitor and network monitoring in general.

Learn more

PRTG Network Monitor

Intuitive to Use. Easy to manage.
More than 500,000 users rely on Paessler PRTG every day. Find out how you can reduce cost, increase QoS and ease planning, as well.

Free Download

Top Tags


View all Tags

Custom Netflow channel list?

Votes:

0

Why are there so few channels built into the netflow sensor? This results in much of the traffic being cataloged as other, and makes it hard to find out bandwidth utilization. Has anyone made a more complete channel definition list they can share that contains more commonly used TCP ports for a Windows, Cisco, Vmware centric IT environment?

I see that you can save the other stream to disk and then parse the results to find out the traffic with source/dest IPs and ports but this seems rather painstaking.

Anyone have anything custom that we can copy/paste?

channel custom netflow

Created on Mar 11, 2011 10:57:53 PM



5 Replies

Votes:

0

Hallo,

you can create a custom Netflow Sensor and then add channels yourself.

please take a look at

https://www.paessler.com/knowledgebase/en/topic/2143-can-i-add-custom-channels-to-standard-packet-sniffer-and-netflow-sensors

a list of what port definitions can be found online

e.g. http://www.iana.org/assignments/port-numbers

Created on Mar 13, 2011 7:57:08 AM by Aurelio Lombardi [Paessler Support]



Votes:

0

Is it possible to have a listing of the default channel groups that are standard with a vanilla Netflow Sensor so I can use that as a jumping off point to creating a custom Netflow sensor with new channel definitions?

I see that they are

1. NetBIOS
2. WWW
3. Mail 249 KByte
4. Infrastructure
5. Remote Control
6. FTP/P2P

I imagine it would be something like:

  1. 1001:NETBIOS ((Protocol[TCP] OR Protocol[UDP]) AND (DestinationPort[137-139] OR SourcePort[137-139]))
  1. 1002:WWW Protocol[TCP] and ( SourcePort[80] or DestinationPort[80] or SourcePort[8080] or DestinationPort[8080] or SourcePort[443] or DestinationPort[443] )

Can you verify this? Thanks!

Created on Mar 14, 2011 9:26:57 PM

Last change on Mar 15, 2011 2:40:21 PM by Torsten Lindner [Paessler Support]



Votes:

0

These listing of the "default channel groups" from a "standard Netflow" Sensor are all listed in the already mentioned article: https://kb.paessler.com/en/topic/2143-can-i-add-custom-channels-to-standard-packet-sniffer-and-netflow-sensors

Created on Mar 15, 2011 2:41:06 PM by Torsten Lindner [Paessler Support]

Last change on Oct 8, 2015 6:10:42 PM by Torsten Lindner [Paessler Support]



Votes:

0

These links no longer exist - is there an updated document on this topic?

Created on Oct 8, 2015 5:14:29 PM



Votes:

0

Please try the link above again I did correct it.

Created on Oct 8, 2015 6:11:22 PM by Torsten Lindner [Paessler Support]




Disclaimer: The information in the Paessler Knowledge Base comes without warranty of any kind. Use at your own risk. Before applying any instructions please exercise proper system administrator housekeeping. You must make sure that a proper backup of all your data is available.