Not free at all - but I've explored many of the products out there. The one I like the most isn't free and isn't on prem so finding a way to set up a tunnel with them would be beneficial.
https://www.talaia.io/overview/ I've used ntop, scrutinizer (pretty good actually and has a free level I believe) and the netflow analyzer. If I recall it was $1500 for 10 interfaces. If you pipe everything through some 10Gbps channels you only need to use 1-2. Any of them require a good processor and good disk IO (use an ssd) so plan accordling. Or just use amazon and set up a tunnel to them to dump the data. That ELK version looks interesting though. I'm not a huge fan of ELK at all but I do want to take a look at it now. -- Steven Kenney Network Operations Manager WaveDirect Telecommunications http://www.wavedirect.net (519)737-WAVE (9283) ----- Original Message ----- From: "Justin Marshall" <just...@pdmnet.net> To: "af" <af@afmug.com> Sent: Tuesday, November 28, 2017 12:57:39 PM Subject: [AFMUG] NetFlow Analyzers Hi, Does anyone know of a good (preferably open-source) NetFlow analyzer? Ntop's pricing scheme seems to be a little steep for the amount of data I need to collect... Thanks, Justin just...@pdmnet.net<mailto:just...@pdmnet.net>
