nfdump
ipt-netflow
Our great sponsors
nfdump | ipt-netflow | |
---|---|---|
4 | 3 | |
735 | 492 | |
- | - | |
9.6 | 2.4 | |
9 days ago | 8 months ago | |
C | C | |
GNU General Public License v3.0 or later | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
nfdump
-
Netflow collector software for lab purpose
https://github.com/phaag/nfdump its an "simple" collector. It is just an CLI tool. If you can utilize the cli it's a monster to analyze the raw data. if you need a fancy gui then this is the wrong collector.
-
real-time analytics / traffic capture on MX204
Try the open source nfdump (this should also be a package in Debian/Ubuntu at least). You would configure 'nfcapd' to receive netflow data, then process it with 'nfdump' which is a commandline tool for obtaining statistics on traffic (e.g. top N IPs for bytes/flows, etc).
- Cisco Netflow Help
-
netflow analyzier free tools
For the quick look nfdump https://github.com/phaag/nfdump is in use. Since it is a CLI tool, it is not really suitable for managers.
ipt-netflow
-
nftables netflow exporter?
I'm trying to find a netflow exporter for nftables. I found this for iptables, https://github.com/aabc/ipt-netflow, but that wont work for nftables, right?
- FRRouting and IPFix/Netflow
-
easy to use monitoring tool for monitoring network requests (mostly https)
The other thing worth considering is adding a IPFIX/netflow logger like ipt-netflow or pmacct.
What are some alternatives?
ntopng - Web-based Traffic and Security Network Traffic Monitoring
conntracker - A good addition to your conntrack-tools package. Conntracker acts like a firewall sniffer, it analysis, realtime, with very low overhead, all iptables (or nf_tables) existing flows and inform you, at the very end of its execution, all flows in a sorted and consumable way.
pmacct - pmacct is a small set of multi-purpose passive network monitoring tools [NetFlow IPFIX sFlow libpcap BGP BMP RPKI IGP Streaming Telemetry].
softflowd - softflowd: A flow-based network traffic analyser capable of Cisco NetFlow data export software.
silk - Silk File Reader
vnstat - vnStat - a network traffic monitor for Linux and BSD
goflow - The high-scalability sFlow/NetFlow/IPFIX collector used internally at Cloudflare.
realtek-r8125-dkms - A DKMS package for easy use of Realtek r8125 driver, which supports 2.5 GbE.
akvorado - Flow collector, enricher and visualizer
linux-router - Set Linux as router in one command. Support Internet sharing, redsocks, Wifi hotspot, IPv6. Can also be used for routing VM/containers 🛰️ (也欢迎关注B站 https://space.bilibili.com/2123686105 )