Open Access
Cisco Systems NetFlow Services Export Version 9
Benoit Claise
- Vol. 3954, pp 1-33
TLDR
This document specifies the data export format for version 9 of Cisco Systems' NetFlow services, for use by implementations on the network elements and/or matching collector programs.Abstract:
This document specifies the data export format for version 9 of Cisco
Systems' NetFlow services, for use by implementations on the
network elements and/or matching collector programs. The version 9
export format uses templates to provide access to observations of IP
packet flows in a flexible and extensible manner. A template defines a
collection of fields, with corresponding descriptions of structure and
semantics. This memo provides information for the Internet community.read more
Citations
More filters
Journal ArticleDOI
Evaluation of Network Intrusion Detection Systems for RPL Based 6LoWPAN Networks in IoT
Abhishek Verma,Virender Ranga +1 more
TL;DR: The effectiveness of RPL-NIDDS17 is shown by statistically analysing the probability distribution of features, correlation between features, and compared with the results of KDD99, UNSW-NB15, WSN-DS datasets.
Proceedings ArticleDOI
Cracking network monitoring in DCNs with SDN
Zhiming Hu,Jun Luo +1 more
TL;DR: Software defined network (SDN) is used to make the severely low determined network tomography (TM estimation) problem in DCNs to be a more determined one and many classic network tomographic algorithms in ISP networks become feasible for DCNs.
Journal ArticleDOI
Visualize Your IP-Over-Optical Network in Realtime: A P4-Based Flexible Multilayer In-Band Network Telemetry (ML-INT) System
TL;DR: A P4-based flexible multilayer in-band network telemetry (ML-INT) system that only introduces very small overhead and can make the IP-over-optical network more visible in real time for performance monitoring and troubleshooting.
Journal ArticleDOI
Reducing false positives of network anomaly detection by local adaptive multivariate smoothing
TL;DR: This work proposes to smooth the outputs of anomaly detectors by online Local Adaptive Multivariate Smoothing (LAMS), which can reduce a large portion of false positives introduced by the anomaly detection by replacing the anomaly detector's output on a network event with an aggregate of its output on all similar network events observed previously.
Journal ArticleDOI
HADEC: Hadoop-based live DDoS detection framework
Sufian Hameed,Usman Murad Ali +1 more
TL;DR: HADEC, a Hadoop-based live DDoS detection framework to tackle efficient analysis of flooding attacks by harnessing MapReduce and HDFS, is proposed and it is shown that HADEC is capable of processing and detecting DDoS attacks in near to real time.