-
I've found reassembly module exists strange behavior, which seems to exhibit different behavior compared to the tcpassembly module.
According to [issue](https://github.com/google/gopacket/issues/48…
-
I am trying to use nprobe for converting pcap files to NetFlow on **Windows**. The pcap files I am using can be downloaded from
[UNSW-NB15 IDS dataset pcap files](https://cloudstor.aarnet.edu.au/plu…
-
We need to monitor Layer 2 flows on a Cisco Nexus N9k switch. Since this switch does not support NetFlow, we are using sFlow for monitoring. However, sFlow does not support the capability to capture o…
-
My env:
fluent-plugin-netflow version: 1.0.2
Netflow device: Huawei AR2204-S(possible netstream)
pcap file sent to your mail box.
Many Thanks!
-
Здравствуйте,
Я, собсно, не большой спец в линух.
Пытаюсь тут собрать на raspberry pi
> Linux raspberrypi 6.1.21-v8+ #1642 SMP PREEMPT Mon Apr 3 17:24:16 BST 2023 aarch64 GNU/Linux
`./con…
-
Hello Team,
I'm trying to trigger the "Unexpercted DNS server" alert in my environment, but it's working only when DNS requests are based on TCP, when DNSnrequest are UDP based protocol is not recogn…
-
I have been testing ipt_netflow in promisc mode using tcpreplay (playing a pcap of 2000 iperf flows). Playing at various speeds (all less than the active timeout), I am noticing significant higher amo…
-
Our Netflow integration current supports several Netflow versions (e.g. 3,5,7,9) as well as IPFIX. Several vendors, such as Dell, only support sFlow output from their network devices. This issue will …
-
I am trying to extract NetFlow statistics from a list of pcap files. The file has been formatted as follows:
```
/path/to/pcap/file1.pcap
/path/to/pcap/file2.pcap
/path/to/pcap/file3.pcap
```
…
-
nprobe is only sending netflow-lite flow data to ntopng once per minute. Is this a bug? It seems unusable like this. The hosts list and flow list are typically empty by the time the data updates and…