Hi,
We have an ELK environment running that gathers data and processes it to the point where end users can visualize the data and such.
Right now we're dealing with Syslogs and Netflow, but are experiencing some issues with netflow. We currently have netflow version 5 configured to be sent to a remote server on udp port 2222 and it works fine.
As you might know version 5 is quite old and doesn't offer as much as version 9 so we decided to configure our device to send over netflow v9. Nothing comes in!
What could be causing this? Version 5 works fine, but we can not receive version 9 netflow.