Hi,
In my spare time over the holiday period I've been working on a Golang-based netflow collector that might be of interest to this sub. It's designed to collect netflow and store it in your choice of backend databases, currently Timescaledb and Mysql are supported, but I hope to support many more in the future.
The design philosophy is;
- No enrichment at collection time, i,e no DNS/WHOIS lookups to slow it down and minimise storage usage.
- Flexible, open and standard databases with simple schemas. You do what you want with the data!
- small footprint, one binary and a config file.
As this is a very early alpha release, a lot of features aren't implemented yet and bugs are highly expected.
It'd be great to get some people who might be interested to assist with testing and/or contributing to the project, or just giving feedback on what you'd like/need out of a netflow collector.
The code can be found here: https://github.com/adambaumeister/goflow/releases
README and install instructions: https://github.com/adambaumeister/goflow
If you want to see an example (again, in-development!) of what you can do with your data, I've also written a very basic UI to partner with the collector called goflow-ui, it is available here: https://github.com/adambaumeister/goflow-ui
No comments:
Post a Comment