nanog mailing list archives
Re: Free-ish Linux Netflow collector/analyser options
From: Peter Phaal <peter.phaal () gmail com>
Date: Tue, 17 May 2022 09:28:26 -0700
Juniper added sFlow support to MX routers in Junos 18.1R1, https://blog.sflow.com/2018/04/sflow-available-on-juniper-mx-series.html You might want to consider deploying sFlow instead of IPFIX, particularly if you are interested in DDoS mitigation where low latency and visibility into packet headers can be helpful. -Peter On Mon, May 16, 2022 at 11:36 AM Matthew Crocker <matthew () corp crocker com> wrote:
I’m looking for a free-ish Linux open sources Netflow collector/analyser. I have 5 Juniper MX routers that will send IPFIX flows to for an ISP network. I’m hoping it is something I can run in AWS/EC2 as I don’t want to worry about storage again in my lifetime. Does anyone have any recommendations? For reporting I would like to generate basic usage reports to/from IP/Subnet/ASN. It would be great if it could also detect DDoS and activate flowspec back into my core routers but that isn’t a requirement Thanks -Matt
Current thread:
- Free-ish Linux Netflow collector/analyser options Matthew Crocker (May 16)
- Re: Free-ish Linux Netflow collector/analyser options Joe Loiacono (May 16)
- Re: [EXTERNAL] Re: Free-ish Linux Netflow collector/analyser options Compton, Rich A (May 17)
- Re: Free-ish Linux Netflow collector/analyser options John Kristoff (May 16)
- Re: Free-ish Linux Netflow collector/analyser options Peter Phaal (May 17)
- Re: Free-ish Linux Netflow collector/analyser options Joe Loiacono (May 16)