Converting from tcpdump to netflow
Vince
jhary at unsane.co.uk
Mon Apr 28 18:42:40 UTC 2008
Eduardo Morras wrote:
> Hello everybody:
>
> I'm capturing packets from our network using tcpdump. Only 96 bytes
> for each packet. Now the sysmaster says that he wants analyze the
> network with netflow graphics. Is there any app that can convert from
> tcpdump/pcap to netflow? We have no router with netflow capabilities.
> Should i restart the packet capture with fprobe or similar app? Can be
> fprobe and tcpdump work in parallel?
>
net-mgmt/softflowd says it can read in pcap files and export netflow
from them (see http://www.mindrot.org/projects/softflowd/ )
Vince
> Thanks In Advance
>
> ------------------------------------------------
> Useful Acronyms : UPnP = Universal Plug and Pray
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe at freebsd.org"
More information about the freebsd-questions
mailing list