exporting raw flow files to text

From: Affan Basalamah (affan@itb.ac.id)
Date: Tue Nov 13 2001 - 10:34:01 PST

Next message: Edwin D. Viñas: "Re: exporting raw flow files to text"

Previous message: Roy Hockett: "Netflow version 7 in cflow"
Next in thread: Edwin D. Viñas: "Re: exporting raw flow files to text"
Reply: Edwin D. Viñas: "Re: exporting raw flow files to text"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi there,

I successfully run cflowd at my network to collect data from catalyst 6000
MSFC router (IOS Native software) using FreeBSD 4.2 (installed by FreeBSD
Ports). So far cflowd collects data very well.

Because of accounting purposes, I would like to process raw flow files
because I find arts++ files is not give enough data I need. And the
question arise, how frequent should I process raw flow files, because I'm
not sure whether the raw flow files changes (e.g from 10.10.10.1.flows.0
to 10.10.10.1.flows.1) in certain times (e.g 7 minutes) or it changes
variably depending on the traffic.

I'm also planning to inject the data into SQL databases (using
postgreSQL) for further analysis.

I would like to hear opinions/experiences from all of you who run similar
project/work.

Thanks!

---
Affan Basalamah, http://ai3.itb.ac.id/~affan [updated]
--
cflowd mailing list
cflowd@caida.org

Next message: Edwin D. Viñas: "Re: exporting raw flow files to text"
Previous message: Roy Hockett: "Netflow version 7 in cflow"
Next in thread: Edwin D. Viñas: "Re: exporting raw flow files to text"
Reply: Edwin D. Viñas: "Re: exporting raw flow files to text"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Tue Nov 13 2001 - 11:09:51 PST