Netflow Collector using ELK, Logstash, Kibana filebeat on ubuntu 20.04

Discussion in 'Installation/Configuration' started by muruganandan, May 16, 2021.

  1. muruganandan

    muruganandan New Member

    Hi All,
    I'm trying to configure netflow collector and analyzer using Elasticsearch,logstash and Kibana.I configured the all the three in ubuntu version 20.04. The modules are up and running. But the configuration part to to unite modules is somehow difficult. I tried varies config bu none was successful.Please help me to configure Neflow collector. or is there opensource tool to for neflow on linux distros. I have made changes on

    filebeat.yml
    elasticsearch.yml
    logstash.yml
    kibana.yml
    netflow.yml

    All are running but not showing any data.

    Netflow is a type of data record streamed from capable network devices. It contains information about connections traversing the device, and includes source IP addresses and ports, destination IP addresses and ports, types of service, VLANs, and other information that can be encoded into frame and protocol headers. With Netflow data, network operators can go beyond monitoring simply the volume of data crossing their networks. They can understand where the traffic originated, where it is going, and what services or applications it is part of.
     
  2. Taleman

    Taleman Well-Known Member HowtoForge Supporter

    I copy-pasted
    Code:
    opensource tool to for neflow on linux distros
    to Internet Search Engine. Seems to find quite a few.
     
  3. muruganandan

    muruganandan New Member

    Yes I did the same but after some study I made some changes and I can the server logs. But flow logs are not there. I tired of making changes.
     

Share This Page