[AusNOG] User-Aware Netflow
Alastair Johnson
aj at sneep.net
Mon Mar 31 14:25:02 EST 2014
On 3/30/2014 8:21 PM, Mark Newton wrote:
> Radius start and stop records provide a timestamped series of
> allocate/release events which map username to IP address.
>
> Netflow records have timestamps and IPs.
>
> Measure netflow on the router between your unmetered walled garden
> and the rest of the world. Consume radius to map destination IP
> address to username. Walk through the netflow records, translate
> flows into negative bytecounts to be applied to each username’s total
> bytecount in the billing system.
>
> Pretty much any ISP with a unmetered walled garden has done this
> already.
This works; although there are other mechanisms that a number of ISPs
use today, e.g. differentiated queues/policers; with traffic
classification to those queues via SPI/DPI can achieve this with more
accuracy and less use of multiple systems (and arguably, more reliability).
Depends on your BNG/BRAS, of course.
AJ
More information about the AusNOG
mailing list