[Flow-tools] Finding useful information from collected data

Joe Loiacono jloiacon at csc.com
Tue Feb 23 13:17:32 EST 2010 

Why don't you use FlowViewer? It is a web companion tool for flow-tools,
and meets your requirements. Check out:

http://ensight.eos.nasa.gov/FlowViewer

Look through the screenshots, and read through the User's Guide.

Joe


|------------>
| From:      |
|------------>
  >------------------------------------------------------------------------------------------------------------------------------------------|
  |Drew Weaver <drew.weaver at thenap.com>                                                                                                      |
  >------------------------------------------------------------------------------------------------------------------------------------------|
|------------>
| To:        |
|------------>
  >------------------------------------------------------------------------------------------------------------------------------------------|
  |"'flow-tools at list.splintered.net'" <flow-tools at list.splintered.net>                                                                       |
  >------------------------------------------------------------------------------------------------------------------------------------------|
|------------>
| Date:      |
|------------>
  >------------------------------------------------------------------------------------------------------------------------------------------|
  |02/23/2010 08:16 AM                                                                                                                       |
  >------------------------------------------------------------------------------------------------------------------------------------------|
|------------>
| Subject:   |
|------------>
  >------------------------------------------------------------------------------------------------------------------------------------------|
  |[Flow-tools] Finding useful information from collected data                                                                               |
  >------------------------------------------------------------------------------------------------------------------------------------------|





Does anyone have any scripts or advice for getting useful data out of
flow-cat/flow-print, etc?

I am just looking for examples for simple things like finding the top 10
IPs doing SMTP, or SSH, or FTP, etc nothing too fancy..

also it would be cool to find the top 10 talkers in BPS/PPS, etc.

Any resources available?

 _______________________________________________
Flow-tools mailing list
flow-tools at splintered.net
http://mailman.splintered.net/mailman/listinfo/flow-tools

More information about the Flow-tools mailing list