Different sources may present flow data in different ways. For example, flowmon-json usually has some form of bi-directional flow, although there may be some unidirectional flows in the data. On the other hand, ipfixcol-json consists only of unidirectional flow data.
So some cleaning and flow pairing is required as IpFlow should represent bidirectional flows --- connections.
Different sources may present flow data in different ways. For example, flowmon-json usually has some form of bi-directional flow, although there may be some unidirectional flows in the data. On the other hand, ipfixcol-json consists only of unidirectional flow data.
So some cleaning and flow pairing is required as IpFlow should represent bidirectional flows --- connections.