search

pavel-odintsov / fastnetmon

FastNetMon - very fast DDoS sensor with sFlow/Netflow/IPFIX/SPAN support
https://fastnetmon.com
GNU General Public License v2.0
3.41k stars 567 forks source link

Show only "Other traffic" #15

Closed mike-sirs closed 10 years ago

mike-sirs commented 10 years ago

Hello, i have server(not VM) with Ubuntu 12.04 and HAProxy on it. When run precompiled fastnetmon like a ./fastnetmon eth1, i got only "Other traffic", what i doing wrong?

"FastNetMon v1.0 IPs ordered by: packets threshold is: 20000

Incoming Traffic 0 pps 0 mbps

Outgoing traffic 0 pps 0 mbps

Internal traffic 0 pps 0 mbps

Other traffic 14953 pps 146 mbps

Packets received: 136462 Packets dropped: 0 Packets dropped: 0.0 %"

pavel-odintsov commented 10 years ago

Hello!

Are you added your networks to file /etc/networks_list?

You should do it in way like this:

xx.yy.zz.ww/24
yy.xx.zz.ww/21

And rerun tool :)

mike-sirs commented 10 years ago

That working now. Thank you!

pavel-odintsov commented 10 years ago

Welcome!

umarizulkifli commented 8 years ago

Hi,

I try to setup fastnetmon on ubuntu. everything looks good. the netflow collector is running and it receive flow from another server. The server forward the flow using fprobe. However when i ran fastnetmon_client it only show other traffic. I added my internal network prefix to network_list yet it is still the same.

FastNetMon 1.1.3 master git-11522e4d905ca2bacb1510a107b7bd654f58016e Pavel Odintsov: stableit.ru IPs ordered by: packets Incoming traffic 0 pps 0 mbps 0 flows

Outgoing traffic 0 pps 0 mbps 0 flows

Internal traffic 0 pps 0 mbps

Other traffic 122040 pps 338 mbps

Screen updated in: 0 sec 300 microseconds Traffic calculated in: 0 sec 25 microseconds Total amount of IPv6 packets related to our own network: 0 Not processed packets: 0 pps

Subnet load: 192.168.219.1/32 pps in: 0 out: 0 mbps in: 0 out: 0 192.168.224.1/32 pps in: 0 out: 0 mbps in: 0 out: 0

pavel-odintsov commented 8 years ago

Hello!

Please check this document about initial configuration: https://github.com/pavel-odintsov/fastnetmon/blob/master/docs/INSTALL.md

Here you could find answer:

It's REQUIRED to add all of your networks in CIDR notation (11.22.33.0/24) to the file /etc/networks_list in the form of one prefix per line. If you are running this software on an OpenVZ node, you may not need to specify networks explicitly, as we can read them from /proc/vz/veip.

On Wed, Aug 17, 2016 at 11:55 AM, xUmaRix notifications@github.com wrote:

Hi,

I try to setup fastnetmon on ubuntu. everything looks good. the netflow collector is running and it receive flow from another server. The server forward the flow using fprobe. However when i ran fastnetmon_client it only show other traffic. I added my internal network prefix to network_list yet it is still the same.

`FastNetMon 1.1.3 master git-11522e4d905ca2bacb1510a107b7bd654f58016e Pavel Odintsov: stableit.ru IPs ordered by: packets Incoming traffic 0 pps 0 mbps 0 flows

Outgoing traffic 0 pps 0 mbps 0 flows

Internal traffic 0 pps 0 mbps

Other traffic 122040 pps 338 mbps

Screen updated in: 0 sec 300 microseconds Traffic calculated in: 0 sec 25 microseconds Total amount of IPv6 packets related to our own network: 0 Not processed packets: 0 pps

Subnet load: 192.168.219.1/32 pps in: 0 out: 0 mbps in: 0 out: 0 192.168.224.1/32 pps in: 0 out: 0 mbps in: 0 out: 0`

— You are receiving this because you modified the open/close state. Reply to this email directly, view it on GitHub https://github.com/pavel-odintsov/fastnetmon/issues/15#issuecomment-240353357, or mute the thread https://github.com/notifications/unsubscribe-auth/ACnfZo9bEIyZJXr6WzimXtTVMeb204Vgks5qgsyRgaJpZM4CGmIX .

Sincerely yours, Pavel Odintsov