CICFLOWMETER GENERATING empty flow

[Jiarubab]

I want to generate flow from CICFLOWMETER by its showing all packets ignored. Here is a snapshot of my problem.

[hasnaamohi]

Did you solve this proplem ?

[Jiarubab]

No Sir.

---

From: hasnaamohi @.> Sent: Wednesday, June 1, 2022 4:04 AM To: ahlashkari/CICFlowMeter @.> Cc: Jiarubab @.>; Author @.> Subject: Re: [ahlashkari/CICFlowMeter] CICFLOWMETER GENERATING empty flow (Issue #140)

Did you solve this proplem ?

— Reply to this email directly, view it on GitHubhttps://github.com/ahlashkari/CICFlowMeter/issues/140#issuecomment-1143092896, or unsubscribehttps://github.com/notifications/unsubscribe-auth/AYBR4UGBW7ZXHJF6HN366LLVM3ONHANCNFSM5UQJSAVQ. You are receiving this because you authored the thread.Message ID: @.***>

[souravs17031999]

@hasnaamohi @Jiarubab was this solved, I am facing same.

[hasnaamohi]

No

في الجمعة، ٢٤ فبراير ٢٠٢٣, ٦:٤٢ م Sourav Kumar @.***> كتب:

@hasnaamohi https://github.com/hasnaamohi @Jiarubab https://github.com/Jiarubab was this solved, I am facing same.

— Reply to this email directly, view it on GitHub https://github.com/ahlashkari/CICFlowMeter/issues/140#issuecomment-1443987082, or unsubscribe https://github.com/notifications/unsubscribe-auth/AZMQCQ46RUX3HKUKAXCQ4W3WZDQHXANCNFSM5UQJSAVQ . You are receiving this because you were mentioned.Message ID: @.***>

[hessammohammadian]

The problem is not the CICFlowmeter. It's probably from your pcap file. If the pcap files don't have an actual ethernet layer the CICFlowmeter can't detect any flows. As you can see in your output all packets are ignored. You need to add the ethernet layer to all pcap files and then it will work. tcprewrite --dlt=enet --infile="" --outfile=""