Re: nfdump - reporting invalid ipv6 addresses
Philipp Herz - Profihost AG <
p.herz@...>
2011-10-05 08:17:57 GMT
Hi,
now i found the answer myself 
Further down the documentation about the output format there are options
like
"-o line6, -o long6, -o extended6"
which have to be used to display IPv6 addresses in "full length".
Philipp
Am 05.10.2011 09:54, schrieb Philipp Herz - Profihost AG:
> Hi,
>
> i am currently using nfdump: Version: 1.6.3p1 which is reporting invalid
> IPv6 adresses as you can see from the following output.
>
> Is there anything special required besides filtering "inet6" ?
>
>
> /usr/local/bin/nfdump -M /opt/nfsen/profiles-data/live/core2:core1 -r
> nfcapd.201110050525 -n 10 -s srcip/packets 'inet6'
> Top 10 Src IP Addr ordered by packets:
> Date first seen Duration Proto Src IP Addr Flows(%)
> Packets(%) Bytes(%) pps bps bpp
> 2011-10-05 05:27:29.425 17.765 any 2001:6b..18::142
> 421(100.0) 215552(100.0) 220.5 M(100.0) 12133 99.3 M 1022
>
>
> Kind regards,
> Philipp
>
> ------------------------------------------------------------------------------
> All the data continuously generated in your IT infrastructure contains a
> definitive record of customers, application performance, security
> threats, fraudulent activity and more. Splunk takes this data and makes
> sense of it. Business sense. IT sense. Common sense.
> http://p.sf.net/sfu/splunk-d2dcopy1
> _______________________________________________
> Nfsen-discuss mailing list
> Nfsen-discuss@...
> https://lists.sourceforge.net/lists/listinfo/nfsen-discuss
------------------------------------------------------------------------------
All the data continuously generated in your IT infrastructure contains a
definitive record of customers, application performance, security
threats, fraudulent activity and more. Splunk takes this data and makes
sense of it. Business sense. IT sense. Common sense.
http://p.sf.net/sfu/splunk-d2dcopy1
RSS Feed