Hello,
I'm trying to setup a netflow collector from Mikrotik RouterOS routers. They claim to support IPFIX and that's what I'm using. All the collected flows have zero first/last: Flow Record: Flags = 0x06 FLOW, Unsampled export sysid = 2 size = 64 first = 0 [1970-01-01 01:00:00] last = 0 [1970-01-01 01:00:00] msec_first = 0 msec_last = 0 src addr = 195.72.211.127 dst addr = 31.44.166.17 src port = 443 dst port = 36353 fwd status = 0 tcp flags = 0x18 .AP... proto = 6 TCP (src)tos = 0 (in)packets = 7 (in)bytes = 496 input = 0 output = 10I captured some netflow traffic and apparently the timestamps are present. The template has FIRST_SWITCHED (22) and LAST_SWITCHED (21) attributes.
I suppose the reason is the one described in https://github.com/phaag/nfdump/issues/36
Do you confirm it should be the case? Thank you, Bye, -- Daniele Orlandi
smime.p7s
Description: Firma crittografica S/MIME
------------------------------------------------------------------------------ Developer Access Program for Intel Xeon Phi Processors Access to Intel Xeon Phi processor-based developer platforms. With one year of Intel Parallel Studio XE. Training and support from Colfax. Order your platform today. http://sdm.link/xeonphi
_______________________________________________ Nfdump-discuss mailing list Nfdump-discuss@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nfdump-discuss
