python-netflow-v9-softflowd
python-netflow-v9-softflowd copied to clipboard
bitkeks
PyPI "netflow" package. NetFlow v9 parser, collector and analyzer implemented in Python 3. Developed and tested with softflowd
Hi, I have added handling for padding that exporter are allowed to include in IPFIX Data Sets as per RFC7011. Stumbled upon the problem when exporter from a Cisco equipment...
Are there any plans to support IPFIX [variable length field encoding](https://tools.ietf.org/html/rfc7011#section-7)?
In IPFIX, exporters and collectors can/should use TCP or SCTP for their connection instead of UDP. At least TCP should be added to the collector in this repo. Related to...
Hi @bitkeks , Thank for your app. I try it today, capture some packet from a ASR 1002 router netflow v9 export. But when I analyzer .gz file, it's show...
I have softflowd (softflowd-1.0.0) running in my pfsense box with "Flow Tracking Level" set to *Full* and the "Netflow Version" set to *9*. When I use `nfcapd` to capture packets...
Until now a custom gzip storage format was used for the collector. This approach is based on the first implementation where a simple JSON dict was exported to a file....
During development and testing I came about a situation where neighbor solicitation flows would cause softflowd to go crazy. Scenario: something in the network causes NS packets every 5-30 seconds....
In the analyzer, two flows from the same pair of hosts are matched with each other. Then one of the hosts is determined as the source, the other as the...
This work adds support for RFC5103: Bidirectional Flow Export Using IP Flow Information Export (IPFIX). I needed this support for some work I am doing. There is an open question...
