There's a tool called pmacct that sits on a regular network interface and sniffs packets; it includes a netflow, an sflow, and plain old pcap based traffic flow sniffing. It dumps to mysql, postgreqsl, in memory tables, and can be pretty fast and is pretty robust.
2009/9/19 Mada R Perdhana <mrp....@gmail.com> > Hi all, > > does anyone here know the best application for distributed packet logger, > which will sniff all packet in the network and log all the packet into > database such as postgre or oracle. it should be strong enough to handle a > crowded data traffic and it should be open source, I already check snort > and > preludeIDS, so I need another alternative. > > cheers, > > -- > "Never Trust an Operating System You don't have the Source for..." > "Closed Source for device Driver are ILLEGAL and not Ethical... act!" > "Isn't it, MS Windows a real multitasking OS?, Why? 'Cause It can boot and > crash simultaneously!" > -- > SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ > Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html > -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
