Quoting shawn reed <[EMAIL PROTECTED]>: > Any ideas on the most efficient way to search for a specific IP address or > prefix from a set of > flows? The size of the flow files is fairly large (3-5 GB). > normally, you use the flow-filter tool. however, in the contribs folder in the Inter.netPH archive there is a tool you can compile called flow-cidr which is a simpler version were you can specify the IP block to be searched.
good luck! ------------------------------------------------------- William Emmanuel S. Yu Department of Information Systems and Computer Science Ateneo de Manila University email : wyu at ateneo dot edu web : http://CNG.ateneo.net/cng/wyu/ phone : +63(2)4266001-4186 GPG : http://CNG.ateneo.net/cng/wyu/wyy.pgp _______________________________________________ Flow-tools mailing list [EMAIL PROTECTED] http://mailman.splintered.net/mailman/listinfo/flow-tools
