> 1) My goal is to store the traffic may be fore ever, and analyze it in > the future for security related incidents detected by ids/ips.
Take a look at "Building a Time Machine for Efficient Recording and Retrieval of High-Volume Network Traffic" https://www.usenix.org/conference/imc-05/building-time-machine-efficient-recording-and-retrieval-high-volume-network
