Softflowd 0.9.8 review
DownloadSoftflowd project is flow-based network traffic analyser capable of Cisco NetFlow data export
|
|
Softflowd project is flow-based network traffic analyser capable of Cisco NetFlow data export. Softflowd semi-statefully tracks traffic flows recorded by listening on a network interface or by reading a packet capture file.
These flows may be reported via NetFlow™ to a collecting host or summarised within softflowd itself.
Installation:
./configure
make
make install
Unfortunately some systems like to make life complicated. Things work fine on the systems that I develop and test on (OpenBSD and Linux). There is peliminary support for Solaris 9 (i.e. it compiled), but no testing on this platform has been performed.
What's New in This Release:
Manual sending of NetFlow v.9 template refreshes is now supported.
ICMP type/code is now encoded into port numbers, similar to some Cisco products.
Lower-resolution tracking of flows (ignoring port or protocol information) was implemented for high-bandwidth users.
Several small but important bugfixes were made.
Softflowd 0.9.8 keywords