Try fprobe http://fprobe.sourceforge.net
It is setting the TCP flags for us.
There's also nprobe http://www.ntop.org/nProbe.html but I have not tried
that.
-Russell Dwarshuis
----------------------------------------------------------------------
Hi, I am using the Netflow to studying the Network security. I want to
get the TCP flag feature of Netflow data, but it always is zero. I have
already known that it due to the certain type of cisco router. But I
can't replace the router. I want to use a software to get the data in
Netflow format.
What a pity, I have tested NetflowExporter,softflowd in a Linux os.
But the TCP flag is also zero. Is there any software for unix/linux
which can make the TCP flag not zero?
Is there any netflow data available in the Internet?
Thanks very much.
Merry Christmas and Happy New Year.
lijian
2007-12-18
_______________________________________________
Flow-tools mailing list
[EMAIL PROTECTED]
http://mailman.splintered.net/mailman/listinfo/flow-tools
