nfdump
goflow
Our great sponsors
| nfdump | goflow | |
|---|---|---|
| 4 | 6 | |
| 735 | 818 | |
| - | 1.3% | |
| 9.6 | 2.5 | |
| 7 days ago | about 1 month ago | |
| C | Go | |
| GNU General Public License v3.0 or later | BSD 3-clause "New" or "Revised" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
nfdump
-
Netflow collector software for lab purpose
https://github.com/phaag/nfdump its an "simple" collector. It is just an CLI tool. If you can utilize the cli it's a monster to analyze the raw data. if you need a fancy gui then this is the wrong collector.
-
real-time analytics / traffic capture on MX204
Try the open source nfdump (this should also be a package in Debian/Ubuntu at least). You would configure 'nfcapd' to receive netflow data, then process it with 'nfdump' which is a commandline tool for obtaining statistics on traffic (e.g. top N IPs for bytes/flows, etc).
- Cisco Netflow Help
-
netflow analyzier free tools
For the quick look nfdump https://github.com/phaag/nfdump is in use. Since it is a CLI tool, it is not really suitable for managers.
goflow
-
Integrating Cisco ASR with Splunk without Splunk Stream.
I would greatly appreciate insights and recommendations from those who have experience in this area. Additionally, I'm interested in hearing your opinions on the best tool for this task: nProbe or goflow? Your rationale behind your recommendation would be invaluable.
-
Sflow/netflow platform with ArubaOS-CX
All in one platform would be preferred, but Docker could sway me to something else. Meaning, I don't want to install a bunch of puzzle pieces to get up and running. GoFlow would be an example here.
- Linux Network Traffic Monitor
-
Netflow Monitoring Software Based on FLOSS
Cloudflare goflow / flow-pipeline
- Large scale flow collection
-
Monitoring 5,000 nodes
For example, for a lot of IDS work, you want to capture netflows if you can. This is something you could do with goflow. Then you can use whatever SIEM/flow analysis tools to figure out what is touching each network location.
What are some alternatives?
ntopng - Web-based Traffic and Security Network Traffic Monitoring
goflow2 - High performance sFlow/IPFIX/NetFlow Collector
pmacct - pmacct is a small set of multi-purpose passive network monitoring tools [NetFlow IPFIX sFlow libpcap BGP BMP RPKI IGP Streaming Telemetry].
prometheus - The Prometheus monitoring system and time series database.
softflowd - softflowd: A flow-based network traffic analyser capable of Cisco NetFlow data export software.
vFlow - Enterprise Network Flow Collector (IPFIX, sFlow, Netflow)
silk - Silk File Reader
flow-pipeline - A set of tools and examples to run a flow-pipeline (sFlow, NetFlow)
akvorado - Flow collector, enricher and visualizer
ElastiFlow - Network flow analytics (Netflow, sFlow and IPFIX) with the Elastic Stack
loki - Like Prometheus, but for logs.