pfflowd
pfflowd is a small daemon which converts real-time state expiry messages from OpenBSD's PF packet filter into Cisco NetFlow datagrams. This allows very fine- grained traffic accounting in conjunction with NetFlow capable tools and places almost no incremental load on a PF firewall.
| Tags | Internet Security Networking Firewalls Monitoring Utilities |
|---|---|
| Licenses | BSD Revised |
| Operating Systems | POSIX BSD OpenBSD |
| Implementation | C |
Recent releases
- 07 Sep 2004 17:29
Changes: This release adds support for NetFlow v.5, exporting flows to IPv6 hosts, and a few small optimisations.
- 05 May 2004 22:20
Changes: This release fixes a couple of bugs, including dropped packets when trying to send to a non-existent flow collector and errors in calculation of the flow start and finish times. It also adds basic filtering on flow direction (in or out). This release targets OpenBSD 3.5 and -current, but can also support 3.4 with a compile-time flag.
- 15 Feb 2004 21:41
Changes: Support for BPF locking in OpenBSD -current (improves security) and support for recent changes to pfsync interface.
- 23 Sep 2003 23:51
Changes: This version features minor bugfixes.
- 27 Jun 2003 16:06
Changes: This release drops privileges upon startup.
