Configuring Clickstream, Meta data, DNS export in IPFIX [Документация VAS Experts]
Документация VAS Experts Документация VAS Experts-mobile
in

Settings

  • Show page
  • Old revisions
  • Export to PDF
  • Fold/unfold all
  • Backlinks
  • Show page
  • Old revisions
  • Export to PDF
  • Fold/unfold all
  • Backlinks

    • Differences

    This shows you the differences between two versions of the page.

    Link to this comparison view

    Both sides previous revisionPrevious revision
    Next revision    		Previous revision
    en:dpi:dpi_options:opt_li:li_ipfix [2025/07/18 12:43] – [Table] elena.krasnobryzhen:dpi:dpi_options:opt_li:li_ipfix [2025/07/24 13:08] (current) – [Configuring the export of DNS responses or DNS queries] elena.krasnobryzh
    Line 54: Line 54:
     |  1004 |  16 |  IPv6 |  43823 |IP_DESTINATION |Recipient address| |  1004 |  16 |  IPv6 |  43823 |IP_DESTINATION |Recipient address|
      
    -^  IPFIX format template for Clickstream                                                                                                                                                                                                                                                           ||||||+^  IPFIX format template for Clickstream                                                                                                                                                                                                                                                           ^^^^^^
     ^  №                                      ^  Size in bytes  ^  Type          IANA    Description              Note                                                                                                                                                                                ^ ^  №                                      ^  Size in bytes  ^  Type          IANA    Description              Note                                                                                                                                                                                ^
     |  1001                                    4              |  int32        |  43823  | TIME_STAMP                                                                                                                                                                                                    | |  1001                                    4              |  int32        |  43823  | TIME_STAMP                                                                                                                                                                                                    |
    Line 271: Line 271:
     Aggregating ''raw_data'', ''clickstream'', ''http_reply'' and ''ssl_reply'' with session data requires additional processing or executing a database query with the ''session_id'' key, or support in the ''rcollector'' utility. Aggregating ''raw_data'', ''clickstream'', ''http_reply'' and ''ssl_reply'' with session data requires additional processing or executing a database query with the ''session_id'' key, or support in the ''rcollector'' utility.
      
    -=====DNS=====+=====Configuring the export of DNS responses or DNS queries=====
     DNS export is configured with the following settings: DNS export is configured with the following settings:
     <code bash> <code bash>
    Line 313: Line 313:
      
     An alternative is to save the data in a local text log. Parameters: An alternative is to save the data in a local text log. Parameters:
    -  * **''ajb_save_dns''** — flag for writing to a text file\\ **''ajb_save_dns=2''** allows you to enable sending DNS queries via IPFIX+  * **''ajb_save_dns''** — flag for writing to a text file 
     +    * **''ajb_save_dns=1''** — by default, sending DNS responses via IPFIX 
     +    * **''ajb_save_dns=2''** allows you to enable sending DNS queries via IPFIX
       * **''ajb_dns_ftimeout''** — timeout (minutes) for switching to the next file   * **''ajb_dns_ftimeout''** — timeout (minutes) for switching to the next file
       * **''ajb_dns_bufsize''** — file write buffer   * **''ajb_dns_bufsize''** — file write buffer
    Line 321: Line 323:
     Switching to the next file occurs when the file size reaches ''ajb_dns_fsize'' or the file is not empty and ''ajb_dns_ftimeout'' has passed Switching to the next file occurs when the file size reaches ''ajb_dns_fsize'' or the file is not empty and ''ajb_dns_ftimeout'' has passed
      
    -ajb_save_dns_format : format for writing to a text file+''ajb_save_dns_format'': format for writing to a text file
       * **''ts''** - time   * **''ts''** - time
       * **''ipsrc''** — ip source   * **''ipsrc''** — ip source