Morning all, I'm successfully capturing the "direction" extension attribute from v9 flows, and I'm keen to use this to accurately infer traffic direction.
Does anyone know if nfdump with the "-b" or "-B" argument takes into account the direction field? Or alternatively, is there a way to instruct the "-A" argument to use the direction as a part of the key too? I can understand why we wouldn't want to do this by default, but it would be nice to have an option to trust the direction field if we know it is always going to be present. Thanks, Sam ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Nfdump-discuss mailing list Nfdump-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nfdump-discuss
