In some customers, Trisul is on a separate segment from the production routers. These sites often have a gateway device that be be used to access. The routers can each the gateway to export NETFLOW but cannot reach the Trisul server. The picture below shows how the setup is.

This HOWTO explains how to use Linux IPTABLES NAT to move between the two.

On the gateway device you just need to run the following commands, say you want to move port 2055 to a particular IP.

# On Ubuntu
ufw disable
 
# On CentOS/RHEL
systemctl firewalld stop
 
# Make sure ip forwarding is enabled in kernel
echo 1 > /proc/sys/net/ipv4/ip_forwarding

The following commands move port 2055 to the Trisul IP (see the diagram above) .

$ iptables -t nat -A PREROUTING -p udp --dport 2055 -j DNAT --to-destination 10.10.10.17:2055
$ iptables -t nat -A POSTROUTING -j MASQUERADE

You should now be seeing Netflow flowing to the Trisul box.

How to redirect incoming traffic on a port to another IP link]