Two little add-ons for Mark Fullmer's flow-tools:
This extension module provides a simple Python interface to NetFlow data stored in flow-tools' format.
For more information see the README.
Download pyflowtools-0.3.tar.gz (CHANGES)
This is a little patch that adds support for importing NetFlow
packets in libpcap format, so you can capture
raw UDP NetFlow data with tcpdump and import it with
flow-import (using parameter -f 1 to specify
pcap format).
The patch is for flow-tools 0.56. As it needs to rename the file
src/pcap.h to src/ftpcap.h, you have to apply it with
patch -E ... or remove src/pcap.h manually afterwards.
Download the patch.