sFlow-RT Download

Download and install

sFlow-RT requires Java 1.8+. The following commands download, install and run the software:

wget https://inmon.com/products/sFlow-RT/sflow-rt.tar.gz
tar -xvzf sflow-rt.tar.gz
./sflow-rt/start.sh

Alternatively, the following command runs sFlow-RT in a Docker container (see sflow/sflow-rt for more options):

docker run -p 8008:8008 -p 6343:6343/udp sflow/sflow-rt

Use a web browser to connect to http://localhost:8008 to interact with the REST API.

The software is also available as RPM and DEB packages:

Package files are installed under the path /usr/local/sflow-rt/ and log files are directed to /usr/local/sflow-rt/log/sflow-rt-<N>.log

There are no access controls built into sFlow-RT. However, HTTP access can be restricted to the local host by setting the http.hostname property to 127.0.0.1 and a reverse proxy can then be used to secure remote access to the REST API.

The following Apache configuration makes the sFlow-RT REST API accessible under the path /sflow-rt/

<IfModule mod_proxy.c>
  ProxyRequests off
  ProxyVia off
  ProxyPass        /sflow-rt/ http://127.0.0.1:8008/ retry=0 timeout=5
  ProxyPassReverse /sflow-rt/ http://127.0.0.1:8008/
  <IfModule mod_headers.c>
    RequestHeader append X-Forwarded-Prefix "/sflow-rt/"
  </IfModule>
</IfModule>
<Location /sflow-rt/>
  # insert access policy below
</Location>

Alternatively, the following is an equivalent configuration for NGINX:

location /sflow-rt/ {
  proxy_buffering off;
  proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  proxy_set_header X-Forwarded-Prefix /sflow-rt/;
  proxy_set_header Host $host;
  proxy_pass http://localhost:8008/;
  proxy_redirect ~^http://[^/]+(/.+)$ /sflow-rt$1;
  # insert access policy below
}

Please read and accept the License Agreement before downloading this software.

Applications

The following command downloads and installs an application:

./sflow-rt/get-app.sh sflow-rt flow-trend

The following applications are currently available on GitHub:

User	Application	Docker Image	Description
sflow‑rt	active-routes	sflow/active-routes	Real-time active BGP route cache
sflow‑rt	ddos-blackhole	sflow/ddos-blackhole	Real-time DDoS flood mitigation using null route
sflow‑rt	ddos-protect	sflow/ddos-protect	Real-time DDoS flood mitigation using BGP RTBH and FlowSpec
sflow‑rt	fabric-view	sflow/fabric-view	Real-time visibility for leaf / spine ECMP fabrics
sflow‑rt	flow-trend	sflow/flow-trend	Real-time top network flows trend chart
sflow‑rt	ix-metrics	sflow/ix-metrics	Real-time monitoring of Internet Exchange (IX) traffic
sflow‑rt	particle	sflow/particle	Visualize real-time traffic using animated particles
sflow‑rt	prometheus	sflow/prometheus	Export metrics to Prometheus time series database
sflow‑rt	sflow-test	sflow/sflow-test	Test data center switch sFlow implementation
sflow‑rt	top-flows	sflow/top-flows	Real-time top network flows table
sflow‑rt	vizceral	sflow/vizceral	Real-time traffic visualization using NetFlix Vizceral
sflow‑rt	browse-metrics	sflow/prometheus	Browse and trend metrics
sflow‑rt	browse-flows	sflow/prometheus	Browse and trend traffic flows
sflow‑rt	browse-drops	sflow/prometheus	Browse and trend dropped packets
sflow‑rt	world-map		Real-time traffic displayed on world map
sflow‑rt	mininet-dashboard		Real-time dashboard for Mininet
sflow‑rt	dashboard-example		Real-time dashboard example
sflow‑rt	flow-graph		Real-time graph of network associations
sflow‑rt	trace-flow		Real-time traffic tracing against topology
sflow‑rt	svg-weather		Real-time network weathermap example
pphaal	ovs-2015		Overlay/underlay network virtualization visibility demo
pphaal	sc15-weather		SC15 SCinet real-time weathermap

Writing Applications provides an introduction describing the structure of an sFlow-RT application. Post information on new applications to the sFlow-RT group to have them listed.

Support

Please post questions, suggestions and applications to the sFlow-RT group.

Production use

Contact sales@inmon.com to discuss production licensing options for sFlow-RT.