[Nfdump-discuss] nfdump and v9 netlows in ASA
netflow collecting and processing tools
Brought to you by:
phaag
Menu
▾
▴
[Nfdump-discuss] nfdump and v9 netlows in ASA
|
From: Rui R. <ruy...@gm...> - 2015-02-15 14:33:00
|
Hi all, I have been setting up nfsen+nfdump in Debian 8. Cutting a story short, one of my current problems is that somehow nfcapd and nfdump have problems reading v9 neflows from my ASA. In the 1.6.6-1 version that comes with Debian, clearly packets and bytes were mangled; in the last. 1.6.13 version of the source code Bytes are already ok, but Packets always come as 0. Duration also comes as 0, albeit I am not needing that field. Would you be able to shed some light on this? -- Regards, -- Rui Ribeiro Senior Sysadm ISCTE-IUL https://www.linkedin.com/pub/rui-ribeiro/16/ab8/434 |
