Nagios Support Forum

Hello, i'm trying to connect a client (using Windows 10) to NNA server. I try to download FlowExport then install and config it. But when i create source on NNA, i can't receive data. On Windows 10, firewall is turned off. Please give me a solution to solve it. Thanks!

Where did you download FlowExport from, and can you show us the settings it's currently configured with? We'll need to see how the application is sending data to ensure it's setup properly.

I download in here https://www.flowtraq.com/downloads/flow ... tSetup.exe.
Here is my config file
02/07/2017 00:11:59.980000 Using interface for sniffing: {704038C2-68BC-4ACB-AACF-97771329A66C}
02/07/2017 00:50:39.513000 Exporting to 192.168.0.190 5555/UDP (slot 0)
02/07/2017 08:34:07.479000 Unable to send UDP packet to slot 0!

It looks like it cannot connect to port 5555.

On the NNA machine, please run the following and post the output -

What is the IP address of the Network Analyzer server?
What OS and version is the Network Analyzer installed on?
Can you run this command and post the output?

rkennedy wrote:It looks like it cannot connect to port 5555.

On the NNA machine, please run the following and post the output -

Code: Select all

netstat -nap
iptables -L

Here is output: netstat -nap
udp 0 0 0.0.0.0:9001 0.0.0.0:* 1343/nfcapd
udp 0 0 0.0.0.0:9002 0.0.0.0:* 1377/nfcapd
udp 0 0 0.0.0.0:5555 0.0.0.0:* 1309/nfcapd

and here is output iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT udp -- anywhere anywhere udp dpt:personal-agent
ACCEPT udp -- anywhere anywhere udp dpt:dynamid
ACCEPT udp -- anywhere anywhere udp dpt:etlservicemgr

Thanks!

tgriep wrote:What is the IP address of the Network Analyzer server?
What OS and version is the Network Analyzer installed on?
Can you run this command and post the output?

Code: Select all

ps -ef --cols=300

IP address is 192.168.0.190 and client windows 10 is 192.168.0.10
I install Network Analyzer on CentOS 6.5 and version is 2.2.3
Output of this command is:
UID PID PPID C STIME TTY TIME CMD
root 1 0 0 07:31 ? 00:00:01 /sbin/init
root 2 0 0 07:31 ? 00:00:00 [kthreadd]
root 3 2 0 07:31 ? 00:00:00 [migration/0]
root 4 2 0 07:31 ? 00:00:00 [ksoftirqd/0]
root 5 2 0 07:31 ? 00:00:00 [migration/0]
root 6 2 0 07:31 ? 00:00:00 [watchdog/0]
root 7 2 0 07:31 ? 00:00:00 [events/0]
root 8 2 0 07:31 ? 00:00:00 [cgroup]
root 9 2 0 07:31 ? 00:00:00 [khelper]
root 10 2 0 07:31 ? 00:00:00 [netns]
root 11 2 0 07:31 ? 00:00:00 [async/mgr]
root 12 2 0 07:31 ? 00:00:00 [pm]
root 13 2 0 07:31 ? 00:00:00 [sync_supers]
root 14 2 0 07:31 ? 00:00:00 [bdi-default]
root 15 2 0 07:31 ? 00:00:00 [kintegrityd/0]
root 16 2 0 07:31 ? 00:00:00 [kblockd/0]
root 17 2 0 07:31 ? 00:00:00 [kacpid]
root 18 2 0 07:31 ? 00:00:00 [kacpi_notify]
root 19 2 0 07:31 ? 00:00:00 [kacpi_hotplug]
root 20 2 0 07:31 ? 00:00:00 [ata/0]
root 21 2 0 07:31 ? 00:00:00 [ata_aux]
root 22 2 0 07:31 ? 00:00:00 [ksuspend_usbd]
root 23 2 0 07:31 ? 00:00:00 [khubd]
root 24 2 0 07:31 ? 00:00:00 [kseriod]
root 25 2 0 07:31 ? 00:00:00 [md/0]
root 26 2 0 07:31 ? 00:00:00 [md_misc/0]
root 27 2 0 07:31 ? 00:00:00 [khungtaskd]
root 28 2 0 07:31 ? 00:00:00 [kswapd0]
root 29 2 0 07:31 ? 00:00:00 [ksmd]
root 30 2 0 07:31 ? 00:00:00 [khugepaged]
root 31 2 0 07:31 ? 00:00:00 [aio/0]
root 32 2 0 07:31 ? 00:00:00 [crypto/0]
root 37 2 0 07:31 ? 00:00:00 [kthrotld/0]
root 38 2 0 07:31 ? 00:00:00 [pciehpd]
root 40 2 0 07:31 ? 00:00:00 [kpsmoused]
root 41 2 0 07:31 ? 00:00:00 [usbhid_resumer]
root 191 2 0 07:31 ? 00:00:00 [scsi_eh_0]
root 193 2 0 07:31 ? 00:00:00 [scsi_eh_1]
root 201 2 0 07:31 ? 00:00:00 [mpt_poll_0]
root 202 2 0 07:31 ? 00:00:00 [mpt/0]
root 203 2 0 07:31 ? 00:00:00 [scsi_eh_2]
root 293 2 0 07:31 ? 00:00:00 [jbd2/sda1-8]
root 294 2 0 07:31 ? 00:00:00 [ext4-dio-unwrit]
root 295 2 0 07:31 ? 00:00:00 [flush-8:0]
root 369 1 0 07:31 ? 00:00:00 /sbin/udevd -d
root 553 2 0 07:31 ? 00:00:00 [vmmemctl]
root 683 2 0 07:31 ? 00:00:00 [kstriped]
root 730 2 0 07:31 ? 00:00:00 [kauditd]
root 963 1 0 07:31 ? 00:00:00 auditd
root 985 1 0 07:31 ? 00:00:00 /sbin/rsyslogd -i /var/run/syslo
dbus 1000 1 0 07:31 ? 00:00:00 dbus-daemon --system
root 1044 1 0 07:31 ? 00:00:00 /usr/sbin/sshd
root 1081 1 0 07:31 ? 00:00:00 /bin/sh /usr/bin/mysqld_safe --d
mysql 1183 1081 0 07:31 ? 00:00:00 /usr/libexec/mysqld --basedir=/u
root 1226 1 0 07:31 ? 00:00:00 sendmail: accepting connections
smmsp 1235 1 0 07:31 ? 00:00:00 sendmail: Queue runner@01:00:00
root 1247 1 0 07:31 ? 00:00:00 /usr/sbin/httpd
root 1259 1 0 07:31 ? 00:00:00 crond
apache 1266 1247 0 07:31 ? 00:00:00 /usr/sbin/httpd
apache 1267 1247 0 07:31 ? 00:00:00 /usr/sbin/httpd
apache 1268 1247 0 07:31 ? 00:00:01 /usr/sbin/httpd
apache 1269 1247 0 07:31 ? 00:00:00 /usr/sbin/httpd
apache 1270 1247 0 07:31 ? 00:00:00 /usr/sbin/httpd
apache 1271 1247 0 07:31 ? 00:00:00 /usr/sbin/httpd
apache 1272 1247 0 07:31 ? 00:00:00 /usr/sbin/httpd
apache 1273 1247 0 07:31 ? 00:00:00 /usr/sbin/httpd
nna 1343 1 0 07:31 ? 00:00:00 /usr/local/bin/nfcapd -I 2 -l /u
nna 1344 1343 0 07:31 ? 00:00:00 /usr/local/bin/nfcapd -I 2 -l /u
nna 1377 1 0 07:31 ? 00:00:00 /usr/local/bin/nfcapd -I 3 -l /u
nna 1378 1377 0 07:31 ? 00:00:00 /usr/local/bin/nfcapd -I 3 -l /u
root 1396 1 0 07:31 ? 00:00:00 login -- root
root 1398 1 0 07:31 tty2 00:00:00 /sbin/mingetty /dev/tty2
root 1400 1 0 07:31 tty3 00:00:00 /sbin/mingetty /dev/tty3
root 1402 1 0 07:31 tty4 00:00:00 /sbin/mingetty /dev/tty4
root 1404 1 0 07:31 tty5 00:00:00 /sbin/mingetty /dev/tty5
root 1406 1 0 07:31 tty6 00:00:00 /sbin/mingetty /dev/tty6
root 1411 369 0 07:31 ? 00:00:00 /sbin/udevd -d
root 1412 369 0 07:31 ? 00:00:00 /sbin/udevd -d
root 1418 1 0 07:32 ? 00:00:00 /usr/sbin/console-kit-daemon --n
root 1485 1396 0 07:32 tty1 00:00:00 -bash
apache 1535 1247 0 07:35 ? 00:00:00 /usr/sbin/httpd
root 1828 1044 0 07:36 ? 00:00:00 sshd: root@pts/0
root 1834 1828 0 07:37 pts/0 00:00:00 -bash
nna 1971 1 0 07:41 ? 00:00:00 /usr/local/bin/nfcapd -I 1 -l /u
nna 1972 1971 0 07:41 ? 00:00:00 /usr/local/bin/nfcapd -I 1 -l /u
apache 2048 1247 0 07:41 ? 00:00:00 /usr/sbin/httpd
root 2369 1834 0 07:46 pts/0 00:00:00 ps -ef

Thanks!

It looks like the NNA server is setup correctly to receive data on port 5555 and that the firewall is configured correctly.
It looks like the Flowexport software that is installed on the Windows system is not sending the data.
Make sure the software it not getting blocked be the Windows firewall.
You may want to go to FlowTraq web site for any support issues.
https://www.flowtraq.com/product/flow-exporter/

tgriep wrote:It looks like the NNA server is setup correctly to receive data on port 5555 and that the firewall is configured correctly.
It looks like the Flowexport software that is installed on the Windows system is not sending the data.
Make sure the software it not getting blocked be the Windows firewall.
You may want to go to FlowTraq web site for any support issues.
https://www.flowtraq.com/product/flow-exporter/

Thanks for your advise. I will try

Your Welcome. Shall I close and lock up the post then?