Not receiving Netflow from Mikrotik

Hi there,

Have you configured a "Sender IP" in the sensor's settings? Pause the sensor and run our NetFlow Tester on the PRTG server or remote probe that's supposed to receive the flows. Does it show incoming flow data and decoded flows? Make sure that the IP you see matches what you have configured in the sensor, otherwise the sensor disregards the data.

Kind regards,

Erhard

Thanks for the reply. Nope no incomning flow data using the NetFlow Tester on the PRTG server :(

Meaning sending side issue I guess....

Although I can't see anything wrong on my Mikrotik side. The Netflow target from Mikrotik is set to: Enabled Src. Address 10.255.x.x Dst. Address 10.255.x.x Port 2055 Version v9 /IPFIX Template Refresh 20 v9/IPFIX Template Timeout 1800

Source and destination match up on Mikrotik and PRTG Sensor.

Ok, send us a screenshot of how it looks in NetFlow Tester. I believe you've also sent us an email about the issue, where I also wrote to send us the screenshot in case you need further assistance. We'd like to see if it does not show anything at all or if there are entries about unassigned flows and alike. If all fails, let Wireshark run on the probe where the flows should be received to see if they are coming in at all.

Kind regards,

Erhard

Thanks for the response.

Netflow tester shows nothing, no unassigned flows. dead. Wireshark is receiving nothing on that port (2055) while running on the sensor machine.

So it's definitely sending side aka router.

Have you had any customers with Mikrotik routers with similar issues?

Definitely nothing blocking the traffic, I think it's not being sent in the first place.

In this case I would recommend contacting the vendor as it is some configuration issue perhaps. Generally we had over time cases with Mikrotik routers, see here for example, but it was never an issue of no flows coming in at all, so I suspect something's not right with how NetFlow export is configured.

Kind regards,

Erhard