nanog mailing list archives

Re: Looking for Netflow analysis package

From: Cameron Daniel <cdaniel () nurve com au>
Date: Mon, 20 May 2013 08:40:16 +1000

On 2013-05-17 8:11 pm, Tim Vollebregt wrote:

Is anyone using an open source solution to process netflow v9 captures?
I'm waiting for SiLK v3 for some time now, which is currently only
available for TLA's and Universities.

Currently looking into nfdump.

To drag this back on topic, yes I'm currently using nfcap/nfdump tocapture and parse Netflow v9. It's not as tidy as I'd like but it doesthe job.

If you want something you can just point and shoot, nfsen ties those twotools together into one config file.

Tim

Current thread:

RE: Looking for Netflow analysis package, (continued)
- RE: Looking for Netflow analysis package Scott Berkman (May 15)
  - Re: Looking for Netflow analysis package Jon Wolberg (May 15)
- RE: Looking for Netflow analysis package Harry Hoffman (May 14)
- Looking for Netflow analysis package Laura Smith (May 16)
  - RE: Looking for Netflow analysis package Meshier, Brent (May 16)
    - Re: Looking for Netflow analysis package Thomas Cannon (May 16)
- Re: Looking for Netflow analysis package Scott Weeks (May 16)
  - Re: Looking for Netflow analysis package Tim Vollebregt (May 17)
    - Re: Looking for Netflow analysis package JP (May 17)
    - Re: Looking for Netflow analysis package Harry Hoffman (May 17)
    - Re: Looking for Netflow analysis package Cameron Daniel (May 19)
    - Re: Looking for Netflow analysis package Rinse Kloek (May 20)
  - Re: Looking for Netflow analysis package Valdis . Kletnieks (May 17)
    - Re: Looking for Netflow analysis package John Starta (May 17)
    - Re: Looking for Netflow analysis package Phil Fagan (May 17)
    - Re: Looking for Netflow analysis package Valdis . Kletnieks (May 18)
- Re: Looking for Netflow analysis package Scott Weeks (May 17)
  - Re: Looking for Netflow analysis package Jimmy Hess (May 18)