Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Which is better for flow export pfSense or Switch?

    General pfSense Questions
    2
    2
    652
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • F
      fgodunow last edited by

      Hello Guys,
      im trying to implement some kind of traffic measurement. We are using pfSense (via kvm emulated guest, pci passthrough for nics) in a bridged mode (vlan wan to vlan servers and virtual bridge to lan on the host). Now my question: is it better to collect flows via the switch (single lacp uplink on the switch) or is it better to use our pfSense to export?

      BTW: Switch is an HP ProCurve which can export sFlow's.

      We only want to collect upstream traffic.

      Cheers.

      1 Reply Last reply Reply Quote 0
      • jimp
        jimp Rebel Alliance Developer Netgate last edited by

        Technically speaking they should be equivalent. Especially if you're only interested in the upstream traffic.

        The pfflowd package, IIRC, uses data from pf, so it's possible there could be more data on the wire than is reported by pfflowd, in which case the switch would be more accurate.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post