NetFlow – is a network protocol developed by Cisco Systems, working on the equipment of Cisco IOS, and is designed to gather information about the IP-traffic within the network. It is proprietary, but supported platforms, different from the IOS, Juniper routers for example, or FreeBSD / OpenBSD. The Cisco-enabled NetFlow, generate netflow records. These packages are exported to the router via the client datagram UDP (User Datagram Protocol) or transfer protocol with flow control SCTP (Stream Control Transmission Protocol), and stored using a netflow collector. Other vendors offer similar features in their routers, but with different names: Jflow or cflowd for Juniper Networks NetStream for Huawei Technology Cflowd for Alcatel-Lucent Although initially protocol is Cisco, NetFlow has been published in the form of standard IETF: Internet Protocol Flow Information eXport (IPFIX).
IPFIX is based on the implementation of NetFlow 9 (RFC 3954). Suppliers of network infrastructure already added support for IPFIX in their devices. Introduced with the launch of Cisco ASA 5580 Series product, NetFlow Security Event Register using the field and Templates Netflow v9, for efficient delivery of telemetry in the high-security environments. The scale of NetFlow Security Event Logging is significantly higher than syslog, offering the same level and degree of detail for recorded events. Networking Streams Network flow (network flow) was determined in different ways. The traditional definition of Cisco should use 7-key processional where the flow is defined as a unidirectional sequence of packets to sharing all 7