Netflow v9 ipv6

Nichole K. Boscia Nichole.K.Boscia at nasa.gov
Wed Apr 1 14:23:59 EDT 2015 

Hi Carter,

I think we tried to get this to work a couple years ago with no luck. I'm still 
interested in adding Netflow v9 IPv6 to our Argus capture, so I'm adding in on 
the bugging!

Cheers,
-nik

-------------------------------------------
Nichole K. Boscia
Senior Network Engineer, CSC
NASA Advanced Supercomputing Division
Ames Research Center, Moffett Field, CA 94035

On Wed, 1 Apr 2015, Carter Bullard wrote:

> Date: Wed, 1 Apr 2015 13:59:55 -0400
> From: Carter Bullard <carter at qosient.com>
> To: Eric Camirand <techr at nexweb.ca>
> Cc: Argus <argus-info at lists.andrew.cmu.edu>
> Subject: Re: [ARGUS] Netflow v9 ipv6
> 
> Hey Eric,
> I have the files, but have not had time to look into it !!!
> Been very busy, but will be addressing argus issues, now that we've made some progress on the business, and can get some cycles.
>
> Keep bugging me about this, to get it working !!!
> Thanks !!
> Carter
>
>
>
>> On Apr 1, 2015, at 1:57 PM, Eric Camirand <techr at nexweb.ca> wrote:
>>
>> Hello Carter,
>>
>> I have sent you some pcap files regarding my issue back in december but i think your spam filter is dropping my emails. How should i send those to you ?
>>
>> Thanks !
>>
>> Eric
>>
>>> On Dec 10, 2014, at 1:04 PM, Carter Bullard <carter at qosient.com> wrote:
>>>
>>> Hey Eric,
>>> The netflow v9 should work.  Seems like we’re close with yours.  I don’t have access to v9 data,
>>> if you can capture some packets and share, I’ll try to fix it.
>>>
>>> Carter
>>>
>>>> On Dec 10, 2014, at 11:35 AM, Eric Camirand <techr at nexweb.ca> wrote:
>>>>
>>>> Hello,
>>>>
>>>> What is the status of netflow v9 ipv6 support in 3.0.8 ?
>>>> I would like to read v9 flows from nfdump or nprobe but ipv6 flows are not
>>>> decoded correctly.
>>>>
>>>> Ex: ra -S cisco://127.0.0.1:9996 ->
>>>> 14:46:23.869000 N ospf 0.0.0.0 -> 0.0.0.0 1 84 REQ
>>>> 14:47:53.000000 N ipv6-* 0.0.0.0 -> 0.0.0.0 1 72 REQ
>>>> 14:47:29.889000 N vrrp 0.0.0.0 -> 0.0.0.0 1 76 REQ
>>>> 14:50:03.878000 N tcp 0.0.0.0.44944 ?> 0.0.0.0.bgp 1 99 INT
>>>>
>>>> Thanks!
>>>>
>>>>
>>>> Eric
>>
>>
>>
>

More information about the argus mailing list