Iyo Xenoeye Netflow muunganidzi iripo, iyo inokutendera kuti utore huwandu hwetraffic inoyerera kubva kune akasiyana network zvishandiso, inofambiswa uchishandisa iyo Netflow v9 uye IPFIX protocol, gadzira data, gadzira mishumo uye kuvaka magirafu. Mukuwedzera, muunganidzi anogona kumhanyisa zvinyorwa zvetsika kana zvikumbaridzo zvapfuudzwa. Iyo yakakosha yeprojekiti yakanyorwa muC, iyo kodhi inogoverwa pasi peISC rezinesi.
Collector Features:
- Data yakaunganidzwa neminda inodiwa yeNetflow inotumirwa kuPostgreSQL. Pre-aggregation inoitika mukati medhamu.
- Kunze kwebhokisi, chete seti yekutanga yeNetflow minda inotsigirwa, asi iwe unogona kuwedzera chero munda.
- Kuita kwemuunganidzi, zvichienderana nemhando yetraffic uye mishumo, inogona kusvika mazana ezviuru zvemazana "inoyerera pasekondi" pane imwe CPU. Iyo modhi yekugovera mitoro ndeye mudziyo (router) pakuyerera.
- Muunganidzi anoshandisa mavhareji anofamba kuverenga kumhanya kwetraffic.
- Muunganidzi anogona kushandiswa kutsvaga mauto ane hutachiona (kutumira email spam, HTTP(S) -mafashamo, SSH scanners), kuona kuputika kwakangoerekana kwaputika panguva yekurwiswa kweDoS/DDoS.
- Mishumo yetiweki inogona kuoneswa uchishandisa zvakasiyana zvinoshandiswa: gnuplot, Python zvinyorwa + Matplotlib, uchishandisa Grafana.
- Kusiyana nevazhinji vaunganidzi vemazuva ano, chirongwa hachishandise Apache Kafka, Elastic, nezvimwewo, maverengero makuru anoitika mukati memuunganidzi pachayo.
Source: opennet.ru