Tags: anti-virus, browser, collector, collectorwhich, dear, integratewell, netflow, network, networking, open-source, opensource, recommend, reporter, security, software
Open-source Netflow Collector
On Networking » Networking
5,596 words with 8 Comments; publish: Tue, 06 May 2008 06:17:00 GMT; (45078.13, « »)
Dear All,
Can anyone please recommend any opensource Netflow collector
which either comes with a reporter software or will integrate
well any other Netflow visualisation software.
Would appreciate any suggestion or input on this.
Zahid
http://network.itags.org/q_networking-tech_174416.html
All Comments
Leave a comment...
- 8 Comments
- "Zahid Hassan " wrote:
Can anyone please recommend any opensource Netflow collector
which either comes with a reporter software or will integrate
well any other Netflow visualisation software.
Currently. I'm satisfied to nfdump (the collector) and NfSen (the
visualisation part).
http://nfdump.sourceforge.net/
http://nfsen.sourceforge.net/
Cheers,
#1; Tue, 06 May 2008 06:18:00 GMT
- Thu, Mar 01, 2007, Matti Saarinen wrote:
"Zahid Hassan " wrote:
Can anyone please recommend any opensource Netflow collector
which either comes with a reporter software or will integrate
well any other Netflow visualisation software.
Currently. I'm satisfied to nfdump (the collector) and NfSen (the
visualisation part).
http://nfdump.sourceforge.net/
http://nfsen.sourceforge.net/
Is anyone running netflow v9 + ipv6 through anything open-source like?
Adrian
cisco-nsp mailing list cisco-nsp (AT) puck (DOT) nether.net
archive at
#2; Tue, 06 May 2008 06:19:00 GMT
- Hi,
Thu, Mar 01, 2007 at 10:07:44PM +0800, Adrian Chadd wrote:
Is anyone running netflow v9 + ipv6 through anything open-source like?
Not yet, but the current nfdump release claims to support it.
gert
#3; Tue, 06 May 2008 06:20:00 GMT
- Hi,
Thu, Mar 01, 2007 at 03:18:35PM +0200, Matti Saarinen wrote:
Currently. I'm satisfied to nfdump (the collector) and NfSen (the
visualisation part).
Seconded.
gert
#4; Tue, 06 May 2008 06:21:00 GMT
- This one isn't free, but there is a thirty day eval, and we've found it
well worth the $795 license cost. Not sure what you're trying to do but
this has relieved all sorts of aches and pains for us on the monitoring
front.
Zahid Hassan wrote:
Dear All,
--
Can anyone please recommend any opensource Netflow collector
which either comes with a reporter software or will integrate
well any other Netflow visualisation software.
--
Would appreciate any suggestion or input on this.
--
Zahid
cisco-nsp mailing list cisco-nsp (AT) puck (DOT) nether.net
archive at
#5; Tue, 06 May 2008 06:22:00 GMT
- Adrian Chadd wrote:
Thu, Mar 01, 2007, Matti Saarinen wrote:
>"Zahid Hassan " wrote:
>>
Can anyone please recommend any opensource Netflow collector
which either comes with a reporter software or will integrate
well any other Netflow visualisation software.
>Currently. I'm satisfied to nfdump (the collector) and NfSen (the
>visualisation part).
>>
>http://nfdump.sourceforge.net/
>http://nfsen.sourceforge.net/
Is anyone running netflow v9 + ipv6 through anything open-source like?
I'm running v9 through nfdump.
No IPv6 flows yet, but I see no reason it would be a problem.
HWEVER - the nfdump file format does not record some of the extended
fields which the nf9 can contain and would be useful to - example, the
mac address
(It also doesn't store the netmask of the matching route, which would be
useful for us too)
I did look at the code but it's non-trivial.
cisco-nsp mailing list cisco-nsp (AT) puck (DOT) nether.net
archive at
#6; Tue, 06 May 2008 06:23:00 GMT
- Adrian Chadd <adrian (AT) creative (DOT) net.auwrote:
>Currently. I'm satisfied to nfdump (the collector) and NfSen (the
>visualisation part).
>http://nfdump.sourceforge.net/
>http://nfsen.sourceforge.net/
Is anyone running netflow v9 + ipv6 through anything open-source like?
Yes, with a NPE-G1 running 12.4(something). nfsen/nfdump in current
snapshots, works like a charm, except that I did not manage to get ASN
information out of it yet.
Now if we had IPv6 netflow capabilities in 12.2SX (for 6500) or 12.2SB
:-\
Regards,
Bernhard
cisco-nsp mailing list cisco-nsp (AT) puck (DOT) nether.net
archive at
#7; Tue, 06 May 2008 06:24:00 GMT
- Hi Adrian,
We run Netflow v9 + ipv6 with nfdump + nfsen. It seems to be
working.
Regards,
Janos Mohacsi
Network Engineer, Research Associate, Head of Network Planning and Projects
NIIF/HUNGARNET, HUNGARY
Key 70EF9882: DEC2 C685 1ED4 C95A 145F 4300 6F64 7B00 70EF 9882
Thu, 1 Mar 2007, Adrian Chadd wrote:
Thu, Mar 01, 2007, Matti Saarinen wrote:
>>
>"Zahid Hassan " wrote:
>>
Can anyone please recommend any opensource Netflow collector
which either comes with a reporter software or will integrate
well any other Netflow visualisation software.
>>
>Currently. I'm satisfied to nfdump (the collector) and NfSen (the
>visualisation part).
>>
>http://nfdump.sourceforge.net/
>http://nfsen.sourceforge.net/
>
Is anyone running netflow v9 + ipv6 through anything open-source like?
>
>
>
>
Adrian
cisco-nsp mailing list cisco-nsp (AT) puck (DOT) nether.net
archive at
cisco-nsp mailing list cisco-nsp (AT) puck (DOT) nether.net
archive at
#8; Tue, 06 May 2008 06:25:00 GMT