-
nprobe is only sending netflow-lite flow data to ntopng once per minute. Is this a bug? It seems unusable like this. The hosts list and flow list are typically empty by the time the data updates and…
-
### Use Case
Hey team,
I'm evaluating usage of SFlow to collect data from internet devices, where BGP information is crucial. Sflow v5 supports this information per their specification: https://sf…
-
I am trying to use nprobe for converting pcap files to NetFlow on **Windows**. The pcap files I am using can be downloaded from
[UNSW-NB15 IDS dataset pcap files](https://cloudstor.aarnet.edu.au/plu…
-
Hello Team,
I'm trying to trigger the "Unexpercted DNS server" alert in my environment, but it's working only when DNS requests are based on TCP, when DNSnrequest are UDP based protocol is not recogn…
-
I am trying to extract NetFlow statistics from a list of pcap files. The file has been formatted as follows:
```
/path/to/pcap/file1.pcap
/path/to/pcap/file2.pcap
/path/to/pcap/file3.pcap
```
…
-
My env:
fluent-plugin-netflow version: 1.0.2
Netflow device: Huawei AR2204-S(possible netstream)
pcap file sent to your mail box.
Many Thanks!
-
Our Netflow integration current supports several Netflow versions (e.g. 3,5,7,9) as well as IPFIX. Several vendors, such as Dell, only support sFlow output from their network devices. This issue will …
-
I have been testing ipt_netflow in promisc mode using tcpreplay (playing a pcap of 2000 iperf flows). Playing at various speeds (all less than the active timeout), I am noticing significant higher amo…
-
- Version:logstash_6.7.1
- Operating System:RED Hat 4.8.5-16
- Sample Data:
[netflow.pcap.zip](https://github.com/logstash-plugins/logstash-codec-netflow/files/3062870/netflow.pcap.zip)
- Steps to…
-
For IPFIX exporter (Cisco router of 4321 model and IOS 16), I am getting this message. I run the flow for hours. But this message is not going away. Using elastiflow on top this codec.
Netflow vers…