From sgeorge.ml at gmail.com Thu Nov 15 10:20:23 2007 From: sgeorge.ml at gmail.com (Siju George) Date: Thu, 15 Nov 2007 04:50:23 +0530 Subject: [netflow-tools] Got the report with netflow, pfflowd and flow-tools - need some basic information. Message-ID: Hi Friends, I got pas till getting a report with netflow, pfflowd, flow-tools installed on my home desktop running OpenBSD 4.2/amd64. The flow was captured while updating the src from Beck's anoncvs server in UA Canada. Here is it if you don't believe me :-) http://pastie.caboo.se/118111 Could somebody please point me to some resources where I can do some basic reading to understand what things like 1) Flows 2) Ocetects 3) Packets ( I know that one ) 4) and those distributions mean. I mean I want to use this actually to find out how much of data passes from ( and to ) each computer inside my LAN secured by a OpenBSD NATing firewall so I can keep track of bandwidth usage of each computer. I mean some place where I can learn how to really interpret what is accumulating in my /var/log/netflow from 'flow-capture'? Thank you so much kind Regards Siju From cristi at net.utcluj.ro Mon Nov 19 09:56:56 2007 From: cristi at net.utcluj.ro (Cristian KLEIN) Date: Mon, 19 Nov 2007 00:56:56 +0200 Subject: [netflow-tools] Got the report with netflow, pfflowd and flow-tools - need some basic information. In-Reply-To: References: Message-ID: <4740C338.6020901@net.utcluj.ro> Siju George wrote: > Hi Friends, > > I got pas till getting a report with netflow, pfflowd, flow-tools > installed on my home desktop running OpenBSD 4.2/amd64. > The flow was captured while updating the src from Beck's anoncvs > server in UA Canada. > Here is it if you don't believe me :-) > > http://pastie.caboo.se/118111 > > Could somebody please point me to some resources where I can do some > basic reading to understand what things like > > 1) Flows > 2) Ocetects > 3) Packets ( I know that one ) > 4) and those distributions mean. > > I mean I want to use this actually to find out how much of data passes > from ( and to ) each computer inside my LAN secured by a OpenBSD > NATing firewall so I can keep track of bandwidth usage of each > computer. Hi, That data won't help you. You should capture your flows and use flow-tools to make relevant statistics. For example: flow-cat * | flow-stat -f 11 > > I mean some place where I can learn how to really interpret what is > accumulating in my /var/log/netflow from 'flow-capture'? > > Thank you so much > > kind Regards > > Siju > _______________________________________________ > netflow-tools mailing list > netflow-tools at mindrot.org > https://lists.mindrot.org/mailman/listinfo/netflow-tools -- +-------------------------------------+ | Cristian KLEIN | | Network Engineer | | Communication Center | | Technical University of Cluj-Napoca | +-------------------------------------+ | Tel: +40-264-401247, int. 247 | | WWW: http://www.cc.utcluj.ro | +-------------------------------------+