Hello.I want know how to do this : 1) Show in graph peak and average values,like a mrtg ? ------------------------------------------------------------------------------ Got Input? Slashdot Needs You. Take our quick survey online. Come on, we don't ask for help often. Plus, you'll get a chance to win $100 to spend on ThinkGeek. http://p.sf.net/sfu/slashdot-survey
Hello.I want to filter the same inner ips to make this scheme 1 inner unique ip = 1 flow. For example 2011-08-01 12:16:34.833 308.392 TCP 10.8.76.201:1415 -> 87.240.134.173:80 .AP... 0 23 13478 0 349 586 9 2011-08-01 12:16:31.989 306.699 TCP 10.8.76.201:1200 -> 87.240.134.160:80 .AP... 0 16 12171 0 317 760 8 As you can see the private(inner ) ip is same but because PNAT i see the 2 flow.So i want just aggregate to one flow . P.S Of course the nfsen planned to do something else,not a this dirty hack of accounting unique ip per second. P.P.S What is either soft can do this ? ------------------------------------------------------------------------------ Got Input? Slashdot Needs You. Take our quick survey online. Come on, we don't ask for help often. Plus, you'll get a chance to win $100 to spend on ThinkGeek. http://p.sf.net/sfu/slashdot-survey
On 7/28/11 15:33, Szymon Trocha wrote: > Hi, > > I'm trying to remove one of the channels from existing profile (continuous/shadow) in nfsen v 1.3.4 > > When I click on the trash icon it asks me "Are you sure to delete ..." but nothing happens then and the channel is still > there and displaying data. Manual says that "Deleting a channel or the entire profile may be done by clicking on the > trash icon." and "All changes will affect the profile immediately.". Am I doing something wrong or there is another way > to remove channel? hmm .. what does the log file say? - Peter > > Best regards, > > > This body part will be downloaded on demand. > > > > This body part will be downloaded on demand. ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA(Continue reading)
Hi, W dniu 2011-08-02 11:19, Peter Haag pisze: > > On 7/28/11 15:33, Szymon Trocha wrote: >> Hi, >> >> I'm trying to remove one of the channels from existing profile (continuous/shadow) in nfsen v 1.3.4 >> >> When I click on the trash icon it asks me "Are you sure to delete ..." but nothing happens then and the channel is still >> there and displaying data. Manual says that "Deleting a channel or the entire profile may be done by clicking on the >> trash icon." and "All changes will affect the profile immediately.". Am I doing something wrong or there is another way >> to remove channel? > > hmm .. what does the log file say? There are only entries like these after confirming the delete question: Aug 3 11:06:49 mirabilis nfsen[8348]: connection on UNIX socket Aug 3 11:06:49 mirabilis nfsen[8348]: comm server started: 24073 Aug 3 11:06:49 mirabilis nfsen[24073]: Cmd Decode: get-globals Aug 3 11:06:50 mirabilis nfsen[24073]: Cmd Decode: get-du Aug 3 11:06:50 mirabilis nfsen[24073]: comm child[24074] terminated with no exit value Aug 3 11:06:50 mirabilis nfsen[24073]: Cmd Decode: get-profile Aug 3 11:06:50 mirabilis nfsen[24073]: Cmd Decode: get-profilegroups Aug 3 11:06:50 mirabilis nfsen[24073]: Cmd Decode: get-channelfilter Aug 3 11:06:50 mirabilis last message repeated 56 times(Continue reading)
Hi,
W dniu 2011-08-02 11:19, Peter Haag pisze:
On 7/28/11 15:33, Szymon Trocha wrote:Hi,
I'm trying to remove one of the channels from existing profile (continuous/shadow) in nfsen v 1.3.4
When I click on the trash icon it asks me "Are you sure to delete ..." but nothing happens then and the channel is still
there and displaying data. Manual says that "Deleting a channel or the entire profile may be done by clicking on the
trash icon." and "All changes will affect the profile immediately.". Am I doing something wrong or there is another way
to remove channel?
hmm .. what does the log file say?
There are only entries like these after confirming the delete question:
Aug 3 11:06:49 mirabilis nfsen[8348]: connection on UNIX socket
Aug 3 11:06:49 mirabilis nfsen[8348]: comm server started: 24073
Aug 3 11:06:49 mirabilis nfsen[24073]: Cmd Decode: get-globals
Aug 3 11:06:50 mirabilis nfsen[24073]: Cmd Decode: get-du
Aug 3 11:06:50 mirabilis nfsen[24073]: comm child[24074] terminated with no exit value
Aug 3 11:06:50 mirabilis nfsen[24073]: Cmd Decode: get-profile
Aug 3 11:06:50 mirabilis nfsen[24073]: Cmd Decode: get-profilegroups
Aug 3 11:06:50 mirabilis nfsen[24073]: Cmd Decode: get-channelfilter
Aug 3 11:06:50 mirabilis last message repeated 56 times
Aug 3 11:06:50 mirabilis nfsen[24073]: Cmd Decode: quit
Aug 3 11:06:50 mirabilis nfsen[8348]: comm child[24073] terminated with no exit value
Regards,
------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA The must-attend event for mobile developers. Connect with experts. Get tools for creating Super Apps. See the latest technologies. Sessions, hands-on labs, demos & much more. Register early & save! http://p.sf.net/sfu/rim-blackberry-1
_______________________________________________ Nfsen-discuss mailing list Nfsen-discuss-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org https://lists.sourceforge.net/lists/listinfo/nfsen-discuss
------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA The must-attend event for mobile developers. Connect with experts. Get tools for creating Super Apps. See the latest technologies. Sessions, hands-on labs, demos & much more. Register early & save! http://p.sf.net/sfu/rim-blackberry-1
_______________________________________________ Nfsen-discuss mailing list Nfsen-discuss@... https://lists.sourceforge.net/lists/listinfo/nfsen-discuss
W dniu 2011-08-03 13:18, Jan Pazdera pisze: > Hi, > > we solved this problem few months ago - it is a bug in nfsen. The > problem was, that nfsen was storing a value into a picture element and > new browsers ignors such behaviour (because its wrong behaviour). > Unfortunatelly, I don't remember more details but this could Peter help > to find and fix that bug. Hi Jan, Thank you for this information. This is indeed some bug. I used an old Mozilla browser and it worked well. It didn't work with FF5.0 or IE 9 Regards, -- Szymon Trocha Poznan Supercomputing & Netw. Center ::: NETWORK OPERATION CENTER Tel. +48 618582022 ::: http://noc.man.poznan.pl
------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA The must-attend event for mobile developers. Connect with experts. Get tools for creating Super Apps. See the latest technologies. Sessions, hands-on labs, demos & much more. Register early & save! http://p.sf.net/sfu/rim-blackberry-1
_______________________________________________ Nfsen-discuss mailing list Nfsen-discuss@... https://lists.sourceforge.net/lists/listinfo/nfsen-discuss
Conform the picture, my NFSEN is genering im TIMESLOT(aug 12 2011) the data, but in the reporte it generate with later data (2001-06-23)... - In files generated by NFSEN, nfcapd.2011xxxxxxxx, are 5 in 5 minutes, the name of file is correct, but in the file the dates are wrong! - Another question, how I can see the field TOS in reports, because I don't get! conform report in attach, didn't displayed this information (tos). Can someone help me? att -- -- Alexandro Marcelo Zacaron www.utfpr.edu.br/toledo ------------------------------------------------------------------------------ Get a FREE DOWNLOAD! and learn more about uberSVN rich system, user administration capabilities and model configuration. Take the hassle out of deploying and managing Subversion and the tools developers use with it. http://p.sf.net/sfu/wandisco-dev2dev
Hi everyone,
We at DANTE have been using NfSen for some years now.
We really like the tool, and we are recently considering the need of a new version.
At the same time, as the use of the tool is growing exponentially within the Company, we are lacking of resources in the actual host.
So, our aim is to install the latest version in a new hosting solution and the IT department is currently looking towards virtualization of hosts.
Here comes my question, does anyone have any experience in “virtualizing” NfSen with or without good results?
Any comment on this will be welcome.
Thanks for your help.
Regards/Saludos,
Juan Quintanilla Pisón
Security Engineer
Tel: +44 (0)1223 371 325
Fax: +44 (0)1223 371 371
Email: juan.quintanilla-JEK8/2l0QJBeoWH0uzbU5w@public.gmane.org
DANTE
City House, 126-130 Hills Road
Cambridge
CB2 1PQ
UK
------------------------------------------------------------------------------ Get a FREE DOWNLOAD! and learn more about uberSVN rich system, user administration capabilities and model configuration. Take the hassle out of deploying and managing Subversion and the tools developers use with it. http://p.sf.net/sfu/wandisco-d2d-2
_______________________________________________ Nfsen-discuss mailing list Nfsen-discuss@... https://lists.sourceforge.net/lists/listinfo/nfsen-discuss
Hello List, I've got problems with compiling Port Tracker. I get the following output: > root <at> coati:~/nfsen-1.3.5/contrib/PortTracker# ./do_compile > + NFDUMP=/home/sysadm/nfdump-1.6.4 > + RRDINCLUDE=/home/sysadm/rrdtool-1.2.30/src > + LIBRRD=/usr/local/rrdtool-1.2.30/lib > + NFDUMP_OBJ=/home/sysadm/nfdump-1.6.4/bin > + NFDUMP_INC=/home/sysadm/nfdump-1.6.4 > + OBJ=/home/sysadm/nfdump-1.6.4/bin/util.o /home/sysadm/nfdump-1.6.4/bin/nftree.o /home/sysadm/nfdump-1.6.4/bin/grammar.o /home/sysadm/nfdump-1.6.4/bin/scanner.o /home/sysadm/nfdump-1.6.4/bin/nffile.o /home/sysadm/nfdump-1.6.4/bin/flist.o /home/sysadm/nfdump-1.6.4/bin/nf_common.o /home/sysadm/nfdump-1.6.4/bin/nfx.o /home/sysadm/nfdump-1.6.4/bin/panonymizer.o /home/sysadm/nfdump-1.6.4/bin/rijndael.o /home/sysadm/nfdump-1.6.4/bin/ipconv.o /home/sysadm/nfdump-1.6.4/bin/minilzo.o > + [ -f /home/sysadm/nfdump-1.6.4/bin/fts_compat.o ] > + NFDUMP_OBJ=/home/sysadm/nfdump-1.6.4/bin /home/sysadm/nfdump-1.6.4/fts_compat.o > + INCLUDES=-I /home/sysadm/nfdump-1.6.4 -I /home/sysadm/nfdump-1.6.4/bin -I/home/sysadm/rrdtool-1.2.30/src > + CC=gcc -c -g -O2 -Wall -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wmissing-noreturn > + gcc -c -g -O2 -Wall -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wmissing-noreturn -c -I /home/sysadm/nfdump-1.6.4 -I /home/sysadm/nfdump-1.6.4/bin -I/home/sysadm/rrdtool-1.2.30/src nftrack.c > nftrack.c:61:21: error: version.h: Datei oder Verzeichnis nicht gefunden > nftrack.c: In function ‘process’: > nftrack.c:127: error: too many arguments to function ‘GetNextFile’ > nftrack.c:127: warning: assignment makes integer from pointer without a cast > nftrack.c:160: warning: passing argument 1 of ‘ReadBlock’ makes pointer from integer without a cast > /home/sysadm/nfdump-1.6.4/bin/nffile.h:1423: note: expected ‘struct nffile_t *’ but argument is of type ‘int’ > nftrack.c:160: error: too many arguments to function ‘ReadBlock’ > nftrack.c:171: warning: passing argument 1 of ‘GetNextFile’ makes pointer from integer without a cast > /home/sysadm/nfdump-1.6.4/bin/flist.h:49: note: expected ‘struct nffile_t *’ but argument is of type ‘int’ > nftrack.c:171: error: too many arguments to function ‘GetNextFile’ > nftrack.c:171: warning: assignment makes integer from pointer without a cast > + gcc -c -g -O2 -Wall -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wmissing-noreturn -c -I /home/sysadm/nfdump-1.6.4 -I /home/sysadm/nfdump-1.6.4/bin -I/home/sysadm/rrdtool-1.2.30/src nftrack_rrd.c > + gcc -c -g -O2 -Wall -Wstrict-prototypes -Wmissing-prototypes -Wmissing-declarations -Wmissing-noreturn -c -I /home/sysadm/nfdump-1.6.4 -I /home/sysadm/nfdump-1.6.4/bin -I/home/sysadm/rrdtool-1.2.30/src nftrack_stat.c > + gcc -o nftrack nftrack.o nftrack_rrd.o nftrack_stat.o /home/sysadm/nfdump-1.6.4/bin/util.o /home/sysadm/nfdump-1.6.4/bin/nftree.o /home/sysadm/nfdump-1.6.4/bin/grammar.o /home/sysadm/nfdump-1.6.4/bin/scanner.o /home/sysadm/nfdump-1.6.4/bin/nffile.o /home/sysadm/nfdump-1.6.4/bin/flist.o /home/sysadm/nfdump-1.6.4/bin/nf_common.o /home/sysadm/nfdump-1.6.4/bin/nfx.o /home/sysadm/nfdump-1.6.4/bin/panonymizer.o /home/sysadm/nfdump-1.6.4/bin/rijndael.o /home/sysadm/nfdump-1.6.4/bin/ipconv.o /home/sysadm/nfdump-1.6.4/bin/minilzo.o -L/usr/local/rrdtool-1.2.30/lib -lrrd -L/usr/X11R6/lib -L/usr/local/lib > gcc: nftrack.o: Datei oder Verzeichnis nicht gefunden Has anyone a solution for this issue? We're using NFdump 1.6.4 with NFSen 1.3.5 running on Ubuntu 10.04 LTS 64 bit. btw: does the Events and the Botnet plugin work with the versions above? Thanks in advance. Regards, Danny Buthge -- BCC Business Communication Company GmbH Heinrich-Nordhoff-Straße 69, 38440 Wolfsburg Tel. +49 5361 2777-361, Fax -398 Service-Nummer: 01801 222678* mailto:danny.buthge <at> bcc.de http://www.bcc.de Registergericht: Braunschweig HRB 4460 Geschäftsführung: Dipl.-Ing. (FH) Josef Glöckl-Frohnholzer *Festnetzpreis 3,9 ct/min, Mobilfunkpreise maximal 42 ct/min ------------------------------------------------------------------------------ EMC VNX: the world's simplest storage, starting under $10K The only unified storage solution that offers unified management Up to 160% more powerful than alternatives and 25% more efficient. Guaranteed. http://p.sf.net/sfu/emc-vnx-dev2dev _______________________________________________ Nfsen-discuss mailing list Nfsen-discuss <at> lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nfsen-discuss
I ran into a snag with installing nfsen on CentoS 5.6 x64 recently. install.pl would always fail on the nfdump version ( <at> line 204 in install.pl) After some head banging and searching, the quick solution was to roll back to nfdump ver 1.6.1 and it installed fine. -Eric ------------------------------------------------------------------------------ EMC VNX: the world's simplest storage, starting under $10K The only unified storage solution that offers unified management Up to 160% more powerful than alternatives and 25% more efficient. Guaranteed. http://p.sf.net/sfu/emc-vnx-dev2dev
RSS Feed12 | |
|---|---|
39 | |
31 | |
14 | |
44 | |
19 | |
20 | |
44 | |
19 | |
22 | |
33 | |
19 | |
36 | |
38 | |
29 | |
23 | |
44 | |
18 | |
44 | |
30 | |
13 | |
12 | |
36 | |
10 | |
41 | |
19 | |
19 | |
18 | |
22 | |
22 | |
18 | |
8 | |
26 | |
25 | |
31 | |
61 | |
6 | |
50 | |
34 | |
12 | |
22 | |
13 | |
23 | |
17 | |
15 | |
8 | |
36 | |
65 | |
19 | |
19 | |
22 | |
16 | |
29 | |
25 | |
25 | |
30 | |
45 | |
55 | |
36 | |
20 | |
45 | |
75 | |
70 | |
65 | |
11 | |
34 | |
31 | |
35 | |
24 | |
112 | |
28 | |
60 | |
54 | |
56 | |
76 | |
54 | |
58 | |
34 | |
29 | |
47 | |
78 | |
26 |
