Hello all.
I've been spending some time testing and understanding flow-tools documentation and I am successfully logging the flows from my router. What I'm asking for are some best-practices, gotchas, tips on how to best chain these tools together for interesting results. - For example things like: Would you use flow-filter and per interface filtering or just using flow-nfilter on some other criteria, like networks? - Run your flows through multiple filters? - If you would use flow-stat or flow-report for your daily, monthly summaries. And would you tag the flows for performance reasons? - Would you keep running summaries or recalculate a lot of previous flows? To sum it up, I understand what most of the tools do. But would appreciate some insight in how to best put them together. ( the way that each unix tool does one thing and one thing well... ) All flow-tools wisdom appreciated. Regards, Kristj�n Bergsson _______________________________________________ Flow-tools mailing list [EMAIL PROTECTED] http://mailman.splintered.net/mailman/listinfo/flow-tools
