[netflow-tools] PCAP file -> NetFlow v5

[thealy]

Hello-

I'm using sysflowd to read in PCAP files and generate NetFlow packets.
Unfortunately it does not appear to retain the original timestamps, but
rather inserts the time that the program is run. I'm running it with
these options:

softflowd -r filtered-23nov09.pcap -n 1.2.34:1111

Is there a way to preserve the original timestamp, or another tool that
will achieve the same goal?

Thanks,

Terry