NetFlow v9 collector for ntopng
NetFlow v9 collector for ntopng
ntopng is a free/commercial NetFlow/sFlow analysis console suitible for a variety of use cases. However, if you want to collect NetFlow or sFlow data and load that into ntopng you currently have no choice but to spend 199Euro on nProbe which in my case is more expensive than the Ubiquiti USG that I wanted to collect NetFlow stats from.
Hence, I created netflow2ng.
git clone https://github.com/synfinatic/netflow2ng.git
cd netflow2ng
make
dist
directory. Copy it somewhere
appropriate and create the necessary startup script(s).netflow2ng -h
ntopng -i tcp://192.168.1.1:5556
where
"192.168.1.1" is the IP address of your netflow2ng server.netflow2ng utilizes goflow for NetFlow decoding. For more information on what NetFlow fields are supported in netflow2ng, please read the goflow docs.
In theory, adding sFlow/IPFIX/NetFlow v5 support should be pretty trivial, but isn't something I plan on doing due to lack of hardware for testing/need.