[AusNOG] Netflow Analytics

Wed Jun 25 20:45:46 EST 2014

Aww shocks. Thanks :-). That project was more useful for tracking back
usage to users to be able to do throttling and reporting as close to real
time as we can manage

I'd really look at pmacct for netflow collection, it supports a heap of
databases types and methods to export the flows, BGP built in to add AS
Path or Community information to your flows and if the data is too much can
summarise it for the parts you care about before exporting. It's been a
very useful tool for us at UOW

- Scotto

On 25 Jun 2014, at 8:09 pm, Ben Lisle <ben at ben.net.au> wrote:

Scott O'Brian announced his project Herbert a month or so back to the list.
 It's definitely worth investigation.  Easy to install.  You can be zero to
hero in about 15 minutes.

http://uowits.github.io/herbert-gui/

On Wed, Jun 25, 2014 at 6:38 PM, Anthony Bortolotto <
a.bortolotto at infinite.net.au> wrote:

>  Hi Matthew,
>
>
>  We use flowd https://code.google.com/p/flowd/ for just billing purposes
> but we were only talking today about how ISPs are going to deal with IPv6
> and the sheer scale of the information required to be collected and then
> reported on for billing purposes.
>
>
>  How is everyone else reporting netflows for IPv6, particularly the big
> guys?
>
>
>   Regards,
> Anthony Bortolotto | Infinite Networks
> P: 1300 790 337 | F: 0262817011
> http://www.infinite.net.au/
>   ------------------------------
> *From:* AusNOG <ausnog-bounces at lists.ausnog.net> on behalf of Matthew
> Horvat <Matthew.Horvat at aseit.com.au>
> *Sent:* Wednesday, 25 June 2014 6:03 PM
> *To:* ausnog at lists.ausnog.net
> *Subject:* [AusNOG] Netflow Analytics
>
>  Hey Guys
>
>  What is everyone using for net flow, we are a service provider and we
> are currently using manage engine net flow analyzer
>
>  We have some specific requirements which aren’t really being met by this
> - billing inbuilt or ability to integrate
> - capacity planning
> - details BGP reporting and ASN information relating to capacity planning
> - report on individual IP groups that relate to our customers
>
>  currently we are only able to view the BGP information from 24hours
> which doesn’t give a huge insight.
>
>  we have tested out the following
>
>  WANsight
> Solarwinds
> Scrutinizer
> PRTG
> Splunk
>
>  And solar winds is the closest to what we are looking for without the
> billing addition
>
>  interested to hear your thoughts
>
>
>  matt
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
>
>
_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net
http://lists.ausnog.net/mailman/listinfo/ausnog
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20140625/df0f6eca/attachment-0001.html>