[Nfdump-discuss] nfanon - Is it really working?

[Adam S. <120...@gl...>]

Hi,  

I am trying to anonymise the IP addresses through the nfanon tool. The command I'm using is for example

nfanon -r nfcapd.201307140000 -K 0xMSOLVS6KPM3MKUDHUIPKBQSNJNVJDB6GXKF8UBL38MVG6SV1ZBCAWLD2IYT2Q9NM  

However, after invoking this, the file appears to be corrupted. The file size decreases for example from 20 to 17MB. When queried by nfdump, it prints out the first record correctly and then it keeps printing the following lines

….

Skip unknown record type 256

Skip unknown record type 256

Skip unknown record type 256

Skip unknown record type 256

Skip unknown record type 256

Skip unknown record type 256
….

And when I invoke nfdump -r nfcapd.201307140000 -I, it prints out

Ident:  
Flows: 0
Flows_tcp: 0
Flows_udp: 0
Flows_icmp: 0
Flows_other: 0
Packets: 0
Packets_tcp: 0
Packets_udp: 0
Packets_icmp: 0
Packets_other: 0
Bytes: 0
Bytes_tcp: 0
Bytes_udp: 0
Bytes_icmp: 0
Bytes_other: 0
First: 2147483647
Last: 0
msec_first: 999
msec_last: 0
Sequence failures: 0


Do you have any ideas what could be wrong? Is the tool really working? I would be immensely grateful for any help. Thank you.

Adam