User Tools
пакет_nfdump
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
|
пакет_nfdump [2022/03/03 15:32] val |
пакет_nfdump [2022/03/30 09:37] val |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====== Пакет nfdump ====== | ====== Пакет nfdump ====== | ||
| + | |||
| + | * NetFlow | ||
| + | * [[https://ixnfo.com/ustanovka-nfdump.html|Установка и использование Nfdump]] | ||
| + | |||
| <code> | <code> | ||
| # apt install nfdump | # apt install nfdump | ||
| + | |||
| + | # cat /etc/nfdump/default.conf | ||
| + | </code><code> | ||
| + | ... | ||
| + | options='-S 2 -l /var/cache/nfdump -p 2055' | ||
| + | </code><code> | ||
| + | # service nfdump restart | ||
| # ps auxwww | grep nfcapd | # ps auxwww | grep nfcapd | ||
| Line 12: | Line 23: | ||
| /OUTPUT FORMATS | /OUTPUT FORMATS | ||
| - | # nfdump -o csv -q -R /var/cache/nfdump/ | grep 192.168.X.128 | + | # nfdump -o csv -q -R /var/cache/nfdump/ | grep 192.168.X.101 |
| + | |||
| + | # nfdump -o csv -q -R /var/cache/nfdump/ 'proto tcp and src ip 192.168.X.101' | ||
| + | |||
| + | # nfdump -o csv -q -A dstip -R /var/cache/nfdump/2022/03/ 'proto tcp and dst net 192.168.X.0/24' | cut -d',' -f5,12,13 | ||
| </code> | </code> | ||
пакет_nfdump.txt · Last modified: 2023/02/14 08:54 by val
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
