flowd-0.8.5 has just been released. It is available from http://www.mindrot.org/flowd.html flowd is a small, fast and secure NetFlow collector that supports NetFlow versions 1, 5, 7 and 9. It is fully IPv6 capable and supports capture of flows sent to multicast groups. flowd is privilege separated to limit the impact of any security vulnerability. Netflow logs are stored in a compact and flexible binary format that supports selection of which flow fields are stored. The flowd distribution provides C, Perl and Python APIs to read these logs. Changes since flowd-0.8.5: ======================= * Improved filters. Filter expressions may now match on: - TCP flags (e.g. match SYN-only flows) - Address family (IPv4 vs. IPv6 flows) - Time of day range (e.g. from 9am to 5pm) - Day(s) of the week (e.g. Monday-Friday) * Extended Python API to allow it to write binary flow logs * Allow store.c routines (and thus the flowd-reader tool) to read from and write to pipes. * Bug fixes to souce port filters and FILTER_DEBUG code from Martynov Nikolay Checksums: ========= - MD5 (flowd-0.8.5.tar.gz) = b747abad67db7da2e0ce903ba4f61905 Reporting Bugs: ============== - Please report bugs using http://bugzilla.mindrot.org/ and/or the netflow-tools at mindrot.org mailing list. To subscribe to this mailing list, please use the web interface at http://www.mindrot.org/mailman/listinfo/netflow-tools Damien Miller <djm at mindrot.org>