Avaya support

Question

Avaya support

rdrgporto opened this issue 6 years ago · 6 comments

Hi everyone,

I've been working with this codec with Cisco devices. Morever, I would like to work with Avaya devices, however, I have taken a look at Elastic documentacion and I have seen that any Avaya devices are supported.

Is there any possibility to add support for Avaya devices ?

Thanks in advance,

Regards 🖖

Answer 1 · 2018-07-13T08:30:31.000Z

Do you currently have Avaya devices sending netflow/ipfix that isn't properly decoded?
If so, you can provide a pcap with Avaya netflow/ipfix traffic so we can fix that?

Answer 2 · 2018-07-18T08:37:41.000Z

Hi @jorritfolmer,

I have configured an Avaya VSP-9012 in order to send data by IPFIX. Regarding to Logstash, I did a simple conf:

  input {

    udp { port => 9995}

  }

  output {

    elasticsearch {
        hosts => ["localhost:9200"]
        index => "ipfix-%{+yyyy.ww}"
  }

I have attached an example of pcap (I did it by tcdump).

example.txt

Thanks in advance,

Regards

Answer 3 · 2018-07-19T08:45:35.000Z

@rdrgporto can you provide the actual PCAP file, instead of a text representation of it?

Answer 4 · 2018-07-19T12:04:06.000Z

Hi @robcowart,

Here you are:

avaya-ipfix.zip

Thanks in advance,

Regards

Answer 5 · 2018-07-24T07:09:35.000Z

Hi @rdrgporto I checked your pcap but there aren't any flow packets in it, only templates. The templates decode fine btw.

Can you perhaps generate some traffic in your lab setup so the Avaya also exports flows?
Can you specify what Avaya device you have?

Answer 6 · 2020-02-08T19:21:18.000Z

Hi,

With Filebeat Input Netflow works 😃

Regards