FlowViewer provides a dynamic web front-end to two powerful open-source netflow data collector and analyzers, Mark Fullmer’s flow-tools suite and the Carnegie Mellon NetSA group’s netflow data capture/analyzer, SiLK. The inclusion of the underlying SiLK tool set enables existing FlowViewer users to continue to use the tool with the newer IPFIX netflow data protocol.
FlowViewer has been developed for NASA’s Earth Sciences Data and Information System (ESDIS) networks, and credit goes to NASA for their usual outstanding support of innovation.
FlowViewer provides users with the ability to quickly extract network management information of interest from voluminous quantities of stored netflow data. The user can configure a [Dashboard] of continuously updating FlowTrackings to maintain a situational awareness of his organization's network traffic. FlowViewer consists of three primary tools: FlowViewer, FlowGrapher and FlowTracker. The user is able to filter data (inclusion or exclusion) by device, IP address range, port, router interface, autonomous system (AS), specified time interval, protocols, TOS field, TCP flags, exporter, and next-hop. All generated reports and filters can be saved for future application. The user can switch between the tools preserving the previously specified filter. FlowViewer makes flow data analysis and tracking quick and easy.
[FlowViewer] enables the user to create text based reports from filtered netflow data. Several different reporting formats are provided. Each of these reports can be sorted by column heading.
[FlowGrapher] enables the user to graph the bandwidth used by a filtered subset of netflow data during a specified time period. Resulting reports include the graph and a textual listing of the largest flows.
[FlowTracker] enables the user to maintain a long-term history of a particular traffic subset. FlowTrackings consist of five graphs of traffic over suceesive longer time periods: Daily, Weekly, Monthly, Yearly, and Last 3 Years.
The user must install and configure either flow-tools, or SiLK. Users already running FlowViewer with flow-tools may opt to install SiLK in parallel to handle IPFIX exporters while leaving older exporters in place. The ability to collect and analyze IPFIX data requires SiLK (download SiLK) now at version 3.7.1. FlowViewer v4.0 continues to work with flow-tools for pre-IPFIX versions of netflow.
The FlowViewer graphing and tracking capabilities make use of such intrepid open source software as Thomas Boutrell’s gd, Lincoln Stein's GD, Martien Verbruggen's GD::Graph, and Tobias Oetiker’s RRDtool packages.
For more information including software requirements and installation instructions, please review the FAQ, User's Guide or the README file. Or, contact me directly at email@example.com. For somewhat larger images, please see the Screenshots.
Log in to post a comment.