pfSense/Netflow Not Working?

[sjnhawk]

This is sort of a continuation of a previous post #11838

I am trying to ingest Netflow from pfSense using softflowd on a fresh install of SO 2.4.30. I've looked through the documentation and other posts but haven't had any luck getting it to work. I was hoping that I could explain the steps I am taking and get feedback on whether I am missing something and/or not configuring it properly.

1.) pfSense/softflowd is configured to send flow to the IP address of my SO management interface/port 2055 using Netflow version 10 (IPFIX)

2.) The NetFlow Records integration has been added to the so-grid-nodes_general agent policy.

3.) Configured customhostgroup0 (I've tried the individual IP for my pfSense interface and it didn't work so went ahead with the entire /16) and customportgroup0

4.) Configured the sensor role chain for DOCKER-USER and INPUT.

5.) Looking for the Netflow via dashboards and no joy.

6.) Zeek is picking up the connection attempts and reports Connection attempt seen, no reply

7.) Output of netstat -tunlp... does the problem possibly stem from the interface listening on udp6 vs. udp and filebeat?