>I was looking at trying out flow monitoring and I found pfflowd, but >unfortunately it does not work with FreeBSD >9.0. I thought about ng_netflow >but that doesn't >see my tun interface which may be related to.. >WARNING: attempt to domain_add(netgraph) after domainfinalize()
Noise message. I've never seen it actually mean anything. The problem is that tun0 is a generic network interface. Ng_ether only exposes Ethernet devices. The equivalent to tun but for an Ethernet device is tap. Creating a tap device after boot immediately creates the corresponding ng_ether node which can then be plumbed into ng_netflow. Some software is kind enough to work with either tun or tap as a configurable option. >Does anyone have any recommendations for generating flow information from PF? I've had great success with ng_netflow. I like the fact that all the processing is in-kernel. ********************************************************************** This message is intended for the addressee named and may contain privileged information or confidential information or both. If you are not the intended recipient please delete it and notify the sender. ********************************************************************** _______________________________________________ freebsd-stable@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-stable To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
