Create a flow flog

SAG-1000 devices support flow logs. A flow log captures information about the inbound and outbound traffic of the associated SAG-1000 device. You can monitor network traffic and troubleshoot errors based on this information. You must create a flow log before you can capture traffic information.

1. Log on to the SAG console.
2. In the left-side navigation pane, click Flow Log. On the Flow Log page, click Create Flow Log.
3. In the Create Flow Log pane that appears, set the following parameters.
   You can store captured network information in Logstores of Log Service, NetFlow collectors, or both. The parameters are describes as follows.

   Parameter	Description
   Name	Specify a name for the flow log.
   Output Interval Under Active Connections	Specify the time interval at which log data of active network connections is collected. The default time interval is 300 seconds. We recommend that you set the interval to between 60 and 6,000 seconds.
   Output Interval Under Inactive Connections	Specify the time interval at which log data of inactive network connections is collected. The default time interval is 15 seconds. We recommend that you set the interval to between 10 and 600 seconds.
   Output Flow Log To	Specify where you want to store the log data. To store log data in Log Service, select sls and set the following parameters. SLS Region: The region where Log Service is deployed. SLS Project: The project to which the Logstore belongs. SLS Logstore: The Logstore where log data is stored. To store log data on a NetFlow collector, select netflow and set the following parameters. NetFlow Server Address: The IP address of the NetFlow collector, for example, 192.168.0.2. NetFlow Server Port: The port of the NetFlow collector. The default port is 9995. NetFlow Version: V5, V9, and V10 are supported. The default version is V9. To store log data both in Log Service and on a NetFlow collector, select all. You must set all the Log Service and NetFlow collector parameters.

4. Click OK.