Open Access
Cisco Systems NetFlow Services Export Version 9
Benoit Claise
- Vol. 3954, pp 1-33
TLDR
This document specifies the data export format for version 9 of Cisco Systems' NetFlow services, for use by implementations on the network elements and/or matching collector programs.Abstract:
This document specifies the data export format for version 9 of Cisco
Systems' NetFlow services, for use by implementations on the
network elements and/or matching collector programs. The version 9
export format uses templates to provide access to observations of IP
packet flows in a flexible and extensible manner. A template defines a
collection of fields, with corresponding descriptions of structure and
semantics. This memo provides information for the Internet community.read more
Citations
More filters
Patent
System and method for reducing netflow traffic in a network environment
TL;DR: In this article, a dictionary between an exporter and a collector is built by encoding a first data record of a flow according to a dictionary template and exporting the first record to the collector via a network communication.
Proceedings ArticleDOI
Towards an Estimation of the Accuracy of TCP Reassembly in Network Forensics
TL;DR: This work pinpoint TCP reassembly errors with their causes and proposes algorithms and analytical techniques to measure them in order to improve network forensic analysis.
Proceedings ArticleDOI
Efficient multidimensional aggregation for large scale monitoring
TL;DR: This paper introduces an aggregation technique which is able to handle multiple kinds of dimension, i.e. features, like traffic capture or host locations, without giving any preference a priori to a particular feature for ordering the aggregation process among dimensions.
Book ChapterDOI
Multi-tenant Network Monitoring Based on Software Defined Networking
TL;DR: In any cloud service model multiple stakeholders are involved with different roles in the service provider-customer relationship, and there should be a monitoring system, which knows about stakeholders, their characteristics, and provisioned resources by them at any point of time.
Journal ArticleDOI
HyperSight: Towards Scalable, High-Coverage, and Dynamic Network Monitoring Queries
TL;DR: Evaluation results show that HyperSight supports a wide range of network event queries and can monitor over 99% packet behavior changes while keeping remarkably low overheads.