Feature Request: Cisco Netflow
Will it be possible to include support for Cisco Netflow in the next release of Zabbix? This will be great, because then Zabbix can really be a onestop for monitoring the network. Currently I'm having trouble finding a netflow logger/analyzer that doesn't crash (like the Netflow Analyzer from Advantnet). The other Linux solutions is also a hassle to set up.
-
-
i second this motion...
Zabbix could become a onestop network monitoring and analyzing tool with an implementation of netflow
i saw OpManager from Adventnet, their monitoring tool is not as good as Zabbix (also, it's not opensource), but it integrates with their NetflowAnalyzer very easily; something like that would be a solution crusher. -
Agreed. Netflow integration would be superb.Comment
-
Do you mean, functionality where zabbix will receive netflow streams directly? i highly doubt this will happen as this is way to much data with an exponential amount of possibilities.
There are plenty of tools which processing netflow streams into specific forms of information (accounting, pattern analizing, ddos detection, stream tracking, etc). You should feed their output info zabbix to fit your needs.Comment
-
I wrote an agent a while ago which I've been tweaking which which has similar functionality. It allows you to capture Network level data. The agent allows you to monitor network flow information to (or from) an IP and Port, or number of bytes to (or from) a MAC address. I am looking at adding functionality which will tell you number of Connects to a host/ip, but I'm not sure at this moment.
The original post is here:
If anyone would like I can post the latest version which adds agent statistics and is a little more OO (Object Oriented) in it's structure. Otherwise the functionality is identical to the one posted.RHCE, author of zbxapi
Ansible, the missing piece (Zabconf 2017): https://www.youtube.com/watch?v=R5T9NidjjDE
Zabbix and SNMP on Linux (Zabconf 2015): https://www.youtube.com/watch?v=98PEHpLFVHM
Comment
Comment