Running 25.7.4.
Enabled netflow collection on 2 physical interfaces + 4 VLAN tagged interfaces on one of the 2 physical interfaces. Disabled capture local.
Sending the netflow data to a collector running on another box, and seeing far too many individual exporters coming from my opnsense box. Seems like the UDP source port keeps rotating which means my collector is constantly dropping data as it is waiting for a new template to be sent. Often, the port rotates again even before a template is sent?
This sample is from only a few minutes. I have seen over 600 unique source ports after letting it run over night.
Oh, this seems to be an issue with running my collector under docker with a docker network. TL;DR: NAT sucks.