I recently stumbled across Elastiflow on Github that will take NetFlow data and turn it into pretty graphs.
I'm curious if the NetFlow protocol can 'signal' that a packet was dropped or didn't traverse the router so we can pump it into Kibana over NetFlow rather than having to write a parser for the firewall logging.
I've googled but not had much luck...
Thanks
No comments:
Post a Comment