CICFlowMeter icon indicating copy to clipboard operation
CICFlowMeter copied to clipboard

Published 20 hours ago verified publisher icon ahlashkari

Convert UNSW-NB15 pcaps

Open msarhan95 opened this issue 3 years ago • 1 comments

Hi All,

I am trying to convert the UNSW-NB15 dataset pcaps using the CICFlowMeter. It would load all the pcaps fine, however, it says it has not found any valid flows and discards the whole pcap.

Any ideas why?

Tried on another dataset pcaps and worked fine.

Thanks.

msarhan95 avatar Nov 05 '20 05:11 msarhan95

@msarhan95 you can process it with NFStream.

Github Repository: https://github.com/nfstream/nfstream

aouinizied avatar May 11 '21 15:05 aouinizied

If you don't receive any output probably the problem is from your pcap file. If the pcap files don't have an ethernet layer the CICFlowmeter can't detect any flows. You need to add the ethernet layer to all pcap files, and it will work. tcprewrite --dlt=enet --infile="" --outfile=""

hessammohammadian avatar Mar 30 '23 14:03 hessammohammadian