Giter Club home page Giter Club logo

Comments (2)

salsero avatar salsero commented on May 24, 2024

For those interested, I think I found a way of doing it:

root@netflowcollector:/var/cache/nfdump# nfdump -R nfcapd.201701020744 -o "fmt:%ts %te %pr %sap %xsa %fl" -a 'src xip 100.64.2.110'
Date first seen Date last seen Proto Src IP Addr:Port X-late Src IP Flows
2017-01-02 08:52:05.655 2017-01-02 08:52:26.531 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 07:46:32.478 2017-01-02 07:46:50.012 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 07:45:17.130 2017-01-02 07:45:36.555 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 08:52:05.650 2017-01-02 08:52:23.281 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 07:46:32.481 2017-01-02 07:46:54.349 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 08:52:10.532 2017-01-02 08:52:27.349 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 08:52:10.525 2017-01-02 08:52:31.325 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 08:52:05.652 2017-01-02 08:52:19.901 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-03 03:41:24.503 2017-01-03 03:41:44.963 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 08:52:05.651 2017-01-02 08:52:27.611 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 08:52:10.529 2017-01-02 08:52:27.471 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 07:46:32.485 2017-01-02 07:46:54.884 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 08:52:10.533 2017-01-02 08:52:26.796 ICMP 100.64.4.10:0 100.64.2.110 2
2017-01-02 07:46:32.483 2017-01-02 07:46:48.088 ICMP 100.64.4.10:0 100.64.2.110 2
Summary: total flows: 28, total bytes: 0, total packets: 0, avg bps: 0, avg pps: 0, avg bpp: 0
Time window: 2017-01-02 07:45:17 - 2017-01-03 05:14:18
Total flows processed: 92, Blocks skipped: 0, Bytes read: 49448
Sys: 0.008s flows/second: 11500.0 Wall: 0.002s flows/second: 45186.6

from nfdump.

phaag avatar phaag commented on May 24, 2024

Added x-late ip aggregation, if compiled with NSEL support.

for example:
./nfdump -r nfcapd..xxx -a -A srcip,xsrcip

from nfdump.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.