This is my third attempt to announce this tool on HN. Still thinking that the utility can be useful for some network engineers. So I chose a more catchy title (seems like "netflow collector" is too boring for HN users) and added a bit more selling description, even though it is open source.
The utility is designed for monitoring small, medium and even large networks using Netflow/IPFIX/sFlow protocols.
It allows you to build different reports on IP addresses, protocols, services, GeoIP, Autonomous Systems and various fields from Netflow/IPFIX/sFlow. Reports can be shown in Grafana.
The utility is not resource-intensive, small networks can be monitored even on Raspberry Pi (with an external hard drive, of course).
In addition to reports, the collector uses moving averages and can run scripts when thresholds are exceeded or when traffic falls below thresholds. We use this to create BGP Flowspec or Blackhole announces during DoS/DDoS attacks.
The utility is in beta state, so if you notice any bug or error in the documentation - feel free to drop a line.
Any feedback is welcome!
Comments URL: https://news.ycombinator.com/item?id=43083439
Points: 1
# Comments: 0