Re: [ipt-netflow] Log mac addresses
NetFlow iptables module for Linux kernel
Brought to you by:
aabc
Menu
▾
▴
Re: [ipt-netflow] Log mac addresses
|
From: ABC <ab...@te...> - 2014-10-06 11:00:57
|
Hello Michal, First of all try to use latest git version or 2.0.1 release. You should configure with ./configure --enable-macaddress, note that "mac" is lowercase. After you loaded module, check first line of /proc/net/stat/ipt_netflow it should contain word "mac". After that macaddresses will be available if interface support them and packets have them (for example, if you are testing on lo there will be no mac addresses.) To verify that flows are sent with mac address records use wireshark. Then if all is correct report problem to flowd developers. You may also report your succes to me/to this list. -abc On Mon, Oct 06, 2014 at 10:57:01AM +0200, Micha?? Zubryk wrote: > Hello, > > I have a question about log using the ipt-netflow mac addresses. > > Or outside running, version 9 netflow and parameter --enable-MACAddress > it is necessary to include something else? > > > I have > ipt_NETFLOW v2.0-32-gbbf2ee7-dirty, srcversion 3D0A68824BC6038EB2B0996; > Aggr mac > ipt_NETFLOW protocol version 9 (NetFlow) enabled. > > A collection of data to use https://code.google.com/p/flowd > > Collect data using a linux router and iptables > $IPTABLES -I FORWARD -j NETFLOW > > > All data are collect exceptMAC addresses ;( > > > Regards. > > -- > Michal Zubryk > > > > ------------------------------------------------------------------------------ > Slashdot TV. Videos for Nerds. Stuff that Matters. > http://pubads.g.doubleclick.net/gampad/clk?id=160591471&iu=/4140/ostg.clktrk > _______________________________________________ > ipt-netflow-users mailing list > ipt...@li... > https://lists.sourceforge.net/lists/listinfo/ipt-netflow-users |
