Help
You can follow the below steps to configure pfSense®.
softflowd is a NetFlow collector that can be deployed on pfSense® software.
There is a package available under System > Packages on the Available Packages tab. Find it in the list, click fa-plus at the end of its row, and confirm the installation.
Once the package has been installed, visit Services > softflowd to configure the service.
Interface:Ctrl-click to select all of the interfaces upon which the daemon will gather NetFlow data.
Host:The target NetFlow server which will receive flow data.
Port:The port on the Host which is listening for NetFlow data.
Max Flows:The number of flows to track before older flows expire.
NetFlow Version:The desired version of the NetFlow protocol.
To view statistics about the running softflowd process, run the following command, replacing igc0 with the actual network interface to query:
: softflowctl -c /var/run/softflowd.igc0.ctl statistics
To expire all flows and force an update to be sent to the netflow server, run the following command, replacing igc0 with the actual network interface to control:
: softflowctl -c /var/run/softflowd.igc0.ctl expire-all
Post configuration, you can discover your device by navigating to Inventory > Devices or Network > Flow Analysis