Date: Mon, 28 Apr 2008 19:41:55 +0100 From: Vince <jhary@unsane.co.uk> To: Eduardo Morras <emorras@s21sec.com> Cc: freebsd-questions@freebsd.org Subject: Re: Converting from tcpdump to netflow Message-ID: <48161A73.5060903@unsane.co.uk> In-Reply-To: <20080428102759.BFA221A406E@s21sec.com> References: <20080428102759.BFA221A406E@s21sec.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Eduardo Morras wrote: > Hello everybody: > > I'm capturing packets from our network using tcpdump. Only 96 bytes > for each packet. Now the sysmaster says that he wants analyze the > network with netflow graphics. Is there any app that can convert from > tcpdump/pcap to netflow? We have no router with netflow capabilities. > Should i restart the packet capture with fprobe or similar app? Can be > fprobe and tcpdump work in parallel? > net-mgmt/softflowd says it can read in pcap files and export netflow from them (see http://www.mindrot.org/projects/softflowd/ ) Vince > Thanks In Advance > > ------------------------------------------------ > Useful Acronyms : UPnP = Universal Plug and Pray > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?48161A73.5060903>