In recent years, the concepts of Artificial Intelligence (AI) and Machine Learning (ML)...
3.2 Configuration Settings
NFA has a large set of configuration settings available in the front end to fine-tune the system’s behavior.
API #
- SSL – Enables/disables SSL support
- SSL Redirect – Enables/disables SSL redirect from a non-SSL port
- SSL listening IPv4/IPv6 address – SSL (HTTPS) listening IPs
- SSL listening port – SSL (HTTPS) listening port
- Non-SSL IPv4/IPv6 listening address – Non-SSL (HTTP) listening IPs
- Non-SSL listening port – Non-SSL (HTTP) listening port
- Front-end access restriction – Enables/disables NFA front-end access restriction
- Allowed IP addresses – Lists the IPs or Subnets with access to the NFA frontend
Flow Collector #
- NetFlow/J-Flow/NetStream/IPFIX listening port – Port on which the collector listens for NetFlow/JFlow/Netstream/IPFIX packets.
- sFlow listening port – Port on which collector listens for sFlow packets
- Buffer size (packets) – The incoming packets buffer size
- Flow stream stop event threshold (seconds) – If flows stream was stopped, it defines the period of time after which FlowStreamStop event would be sent.
- Extended exporter address determination logic – Enables/Disables extended exporter address determination logic using IPFIX/NetFlow informations elements: 403:originalExporterIPv4Address, 404:originalExporterIPv6Address, 130:exporterIPv4Address, 131:exporterIPv6Address
- BGP attributes Caching – Enables/Disables BGP attributes caching
- BGP Attributes cache size (in number of entries) – Specifies the maximum number of cache entries in BGP attributes requester cache
- BGP attributes cache TTU (Time to Use) – Specifies the maximum number of seconds for TTU in BGP attributes requester cache of an entry
- BGP attributes related requests timeout (milliseconds)
- Accept flow records from enabled devices only – when enabled, NFA accepts flow records sent by exporter IP of the configured devices only
- Enable triggering of DNS PTR records lookup – enables/disables DNS PTR records lookup for the IP flow source and destination addresses
BGP #
- KeepAlive message interval (seconds) – The interval between two consecutive BGP keepalive messages
- Hold time interval (seconds) – Specifies how long NFA will wait for incoming BGP messages before it assumes the neighbor is dead.
LOGS #
- APId log level – Specifies the log level for APId. The drop-down menu lists log levels in order, from most severe to least severe ones.
- Flowd log level – Specifies the log level for Flowd. The drop-down menu lists log levels in order, from most severe to least severe ones.
- Aggd log level – Specifies the log level for Aggd. The drop-down menu lists log levels in order, from most severe to least severe ones.
- BGPd log level – Specifies the log level for BGPd. The drop-down menu lists log levels in order, from most severe to least severe ones.
- Alertd log level – Specifies the log level for Alertd. The drop-down menu lists log levels in order, from most severe to least severe ones.
- Pushd log level – Specifies the log level for Pushd. The drop-down menu lists log levels in order, from most severe to least severe ones.
- SNMPd log level – Specifies the log level for SNMPId. The drop-down menu lists log levels in order, from most severe to least severe ones
- NAPId log level – Specifies the log level for NAPId. The drop-down menu lists log levels in order, from most severe to least severe ones
STATS #
- Collector data1 granularity (minutes) – Specifies the aggregation granularity for data stored in flows1 table
- Collector data2 granularity (minutes) – Specifies the aggregation granularity for data stored in flows2 table
- Collector data3 granularity (minutes) – Specifies the aggregation granularity for data stored in flows3 table
- Collector data1 keep time (minutes) – Specifies the time for which to keep data in flows1 table
- Collector data2 keep time (minutes) – Specifies the time for which to keep data in flows2 table
- Collector data3 keep time (minutes) – Specifies the time for which to keep data in flows3 table
- BGP data keep time (days) – Specifies the time to keep data in the BGP table (used for BGP Report).
Keep times indicated must be divisible between the tables.
RESET DEFAULTS #
- Changes all settings back to the default values.
REPORT CACHE #
- Query caching – Enables/disables caching of the query results
- Cached query lifetime (minutes) – Specifies the lifetime of the cached query
- Query cache max size (megabytes) – Specifies the maximum cache size
SNMP #
- Time between successive interface info requests (seconds) – The time interval between requests for the available interface details sent out by NFA.
- SNMP requests timeout (seconds) – The time interval that NFA waits for a response message from an agent. Increase the SNMP timeout value if there is higher latency in your network.
- Number of retries before failing a request – If a response from an SNMP Agent is not received before the timeout, then NFA retries the request the indicated number of times before reporting a failure.
- Maximum number of repetitions for GetBulk request – value for max repetitions field in the GETBULK PDU.