Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Softflowd wrong traffic data

    Scheduled Pinned Locked Moved
    Traffic Monitoring
    1
    1
    358
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • X
      xstreem
      last edited by

      Hi All, it's about 10 days that I'm tremendously trying to resolve an issue related to Softflowd.
      I tried different collectors such as Graylog or Elasticsearch+Kibana to collect the netflow data sent by Softflowd. Everything works in the way that I can collect the data sent by Softflowd. When I try to visualize in a time chart the traffic, making the sum of field octecDeltaCount that is the fields that contains the bytes of the flow this data is completely wrong and always much bigger.
      So for example I download from internet exactly 100 Mb and I see a much bigger traffic, if I move a file from a PC on a VLAN to another PC on another VLAN the same I copy 1GB file for example and see a sum of octetDeltaCount of 8GB, but also the atrange thing is that there is no rule, if i repeat the operation maybe I see 15GB and I repeat again maybe 5 GB. The flows correctly increases when I exchange data but all the time the registered traffic is much bigger and apparently with no logic.
      Anybody have seen similar behaviour? Or any idea ? Or is there anything I'm doing wrong?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post