IPFIX (Internet Protocol Flow Information Export) is a standard for the format and export of network flow information for troubleshooting, auditing, or collecting analytics information.

You can configure flow monitoring on a logical segment. All the flows from the VMs connected to that logical segment are captured and sent to the IPFIX collector. The collector names are specified as a parameter for each IPFIX switch profile.

Note:

In an SDDC that is a member of an SDDC group, all outbound traffic from hosts to destinations outside the SDDC network is routed to the VTGW or private VIF regardless of other routing configurations in the SDDC. This includes IPFIX and Port Mirroring traffic. See Creating and Managing SDDC Deployment Groups with VMware Transit Connect in the VMware Cloud on AWS Operations Guide.

Prerequisites

Verify that a logical segment is configured. See Create or Modify a Network Segment.

Procedure

  1. Log in to the VMC Console at https://vmc.vmware.com.
  2. Select Networking & Security > IPFIX.
  3. To add a new collector, click COLLECTORS > ADD NEW COLLECTOR and give the collector a Name.
    Enter the collector IP address and port. The default UDP port is 4739. You can add up to 4 IPFIX collectors.
  4. Click SAVE to create the collector.
  5. Click SWITCH IPFIX PROFILES to create or edit a switch IPFIX profile.
    See Configure Switch IPFIX Profiles in the NSX-T Data Center Administration Guide for more information about NSX-T switch IPFIX profile parameters.
  6. (Optional) Tag the profile.

    See Add Tags to an Object in the NSX-T Data Center Administration Guide for more information about tagging NSX-T objects.

  7. Click SAVE to create the profile.

What to do next

Click the ellipses button next to a switch IPFIX profile and click Edit to make configuration changes.