[netflow-tools] Announce: flowd-0.8.5
Damien Miller
djm at mindrot.org
Sat May 14 17:57:32 EST 2005
flowd-0.8.5 has just been released. It is available from
http://www.mindrot.org/flowd.html
flowd is a small, fast and secure NetFlow collector that supports
NetFlow versions 1, 5, 7 and 9. It is fully IPv6 capable and
supports capture of flows sent to multicast groups. flowd is
privilege separated to limit the impact of any security
vulnerability. Netflow logs are stored in a compact and flexible
binary format that supports selection of which flow fields are
stored. The flowd distribution provides C, Perl and Python APIs
to read these logs.
Changes since flowd-0.8.5:
========================
* Improved filters. Filter expressions may now match on:
- TCP flags (e.g. match SYN-only flows)
- Address family (IPv4 vs. IPv6 flows)
- Time of day range (e.g. from 9am to 5pm)
- Day(s) of the week (e.g. Monday-Friday)
* Extended Python API to allow it to write binary flow logs
* Allow store.c routines (and thus the flowd-reader tool) to read
from and write to pipes.
* Bug fixes to souce port filters and FILTER_DEBUG code from
Martynov Nikolay
Checksums:
==========
- MD5 (flowd-0.8.5.tar.gz) = b747abad67db7da2e0ce903ba4f61905
Reporting Bugs:
===============
- Please report bugs using http://bugzilla.mindrot.org/ and/or
the netflow-tools at mindrot.org mailing list. To subscribe to
this mailing list, please use the web interface at
http://www.mindrot.org/mailman/listinfo/netflow-tools
Damien Miller <djm at mindrot.org>
More information about the netflow-tools
mailing list