Nagios Support Forum

Ok, we have a instance spun up for a POC to replace Solarwinds here. In Solarwinds we send netflow data from about 50 devices and all to the same default port. In Solarwinds we can select the device and see only the flow data that came in from it. Is there the same functionality in NNA or would we have to create 50 different sources and configure the devices to send to a specific port?

While you *can* send all of the data you'd like to a single port, that would impact many of your graphs/views in a negative way. I recommend using a seperate port for each netflow sender. This makes more sense visually, and will help you down the line.

Network Analyzer is designed this way in part because certain listener processes are only capable of processing certain types of information - sflows and netflows need to be processed differently.

To answer your question directly -

Is there the same functionality in NNA or would we have to create 50 different sources and configure the devices to send to a specific port?

It's not necessary to make unique ports for every source, but we highly recommend it.

jolson wrote:It's not necessary to make unique ports for every source, but we highly recommend it.

I hear what you are saying, but with your last line, does that mean this:
I could create 50 sources that all use the same port, I could just configure each to only receive data from a specific sender IP? However, the strong recommendation is to have them all send to their own port(Which really isn't that horrible)!

Did I read your reply correctly?

Sorry - I must have been unclear. Each source must be listening on a unique port. You cannot have two sources listening on the same port. What you can do is have a single source listening on a single port (5555) that multiple devices are sending data to.