Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/bwnetflow/protobuf_to_netflow_converter
Kafka consumer that converts protobuf decoded messages into NetFlow v9 packets.
https://github.com/bwnetflow/protobuf_to_netflow_converter
Last synced: about 17 hours ago
JSON representation
Kafka consumer that converts protobuf decoded messages into NetFlow v9 packets.
- Host: GitHub
- URL: https://github.com/bwnetflow/protobuf_to_netflow_converter
- Owner: bwNetFlow
- License: gpl-3.0
- Created: 2019-06-05T13:48:37.000Z (over 5 years ago)
- Default Branch: master
- Last Pushed: 2019-11-07T07:49:49.000Z (about 5 years ago)
- Last Synced: 2024-11-11T06:42:39.266Z (about 2 months ago)
- Language: C++
- Size: 662 KB
- Stars: 1
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# PROTOBUF_TO_NETFLOW_CONVERTER
This application aggregates consumed protobuf encoded flows according to their original NetFlow v9 exporter, converts these flows to NetFlow v9 compliant flows and subsequently sends NetFlow v9 compliant packets consisting of the aggregates flows to a user specified host.
# Installation
Debian/Ubuntu: Run first the configuration script
```
./configure.sh
```
Thereafter the make command can be used to compile the application
```
make
```# Run
To run the protobuf_to_netflow converter the user needs superuser privileges.
The application can be started by the command
```
sudo ./main
```# Configuration File
The application needs a configuration file as starting parameter. The user must specify the following parameters in this configuration file:
topic: specifys-the-kafka-topic
user: username
pwd: pwd belonging to the user
grp_id: the user specified grp id
brokers: the kafka brokers to be used
iface_name: the physical NIC id of the computer running this application, e.g., lo
dst_ip: the target's ip address
dst_port: the target's port number
anonymization: yes or no; yes anonymizes all flow ip addresses according to the HMAC standard