Flow Handler Updates

The following Flow handler updates should be considered. Please refer to this doc for more details.

1. Deprecating first_filter_if_as_label: true
2. Implementing enrichment: false #default should be true
3. Investigate implementing mute_dynamic_ports: true #default should be true This setting would anonymize (or "mute") dynamic port numbers (49152 to 65535) to reduce metric cardinality (for what are essentially random port numbers). This should apply to all metrics that use port numbers (whether enriched or not).
4. Implementing single device and interface filters:

      filter:
        device: 192.243.6.193
        interface: 6

5. Restructuring metric groups along the lines of these proposed groups:

	ByPackets,
	ByBytes,
	Counters,
	TopPorts,
	TopIPs,
	TopIP_Ports,
	TopGeo,
	Cardinality,
	TopConversations,
	TopInterfaces

6. Order processing metric_groups such that disable is processed before enable. This would then support this type of configuration:

      metric_groups:
        enable:
          - interfaces
        disable:
          - all

7. Flow metrics should be structured in such a way as to always specify the direction (in|out) and the unit of measure (bytes|packets), such as: flow_(in|out)_tcp_(bytes|packets) instead of flow_tcp flow_top_(in|out)_(dst|src)_port_(bytes|packets) instead of flow_top_(dst|src)_ports_(bytes|packets) flow_top_(in|out)_(dst|src)_ip_(bytes|packets) instead of flow_top_(dst|src)_ip_(bytes|packets) flow_top_(in|out)_(dst|src)_ip_port_(bytes|packets) instead of flow_top_(dst|src)_ip_port_(bytes|packets)
8. Add new counter metrics for the specified device interface: flow_(in|out)_(bytes|packets)