netflow support in argus-clients ?
Carter Bullard
carter at qosient.com
Mon Mar 21 20:32:59 EDT 2011
Gentle people,
There was discussion regarding new netflow support for argus and I'd like to get some
sense as to what people would like to see.
At this point, we're investigating importing netflow v9 and/or IPFIX flow records into argus-clients.
I am also looking into reading flow-tools file formats. Is there interest in any of these features?
I am also investigating exporting arcsight specific data output format and netflow v5 format
from radium(). While IPFIX stream output is not on the radar, IPFIX output file formats are possibly
on the list. None of these are trivial to implement, so we'l have to have a really good reason.
Opinions, suggestions, comments, attitude, whatever, are more than welcome.
Carter
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3815 bytes
Desc: not available
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20110321/478b2076/attachment.bin>
More information about the argus
mailing list