Community:TrafficFlows

From Splunk Wiki

(Redirected from Apps:TrafficFlows)
Jump to: navigation, search

Splunk can collect traffic flows and help users get access to traffic information in context of all the other IT data collected.

Traffic flows come in many variants, generally dependent on the network device vendor:

  • NetFlow
  • sFlow
  • jFlow
  • etc.

Splunk has no native NetFlow transport support. However, what a lot of customers are doing, is using one of the following tools to receive the binary NetFlow feed and dump the output in textual form into a file or on STDIN. That input can then be collected in Splunk:

  • Argus
  • flowd
  • nfdump
Retrieved from "http://wiki.splunk.com/Community:TrafficFlows"
Hot Wiki Topics


About Splunk >
  • Search and navigate IT data from applications, servers and network devices in real-time.
  • Download Splunk