Common Lisp Netflow log reader for flowd logs.
The core of this code originally appeared in the email@example.com mailling list. The original author is Ingvar Mattison. The code has been updated to work with modern flowd Netflow log files and extended functionality.
The functions prefixed with -v2 are for working with older flowd datastores. For modern installations of flowd the non prefixed versions of these functions should be used
See source or quickdocs
Flowd Collector Info
This library uses Netflow collector Flowd which is available at: http://www.mindrot.org/projects/flowd/
Flowd can be build from tarball our Mecurial repo Tarball: http://flowd.googlecode.com/files/flowd-0.9.1.tar.gz Mecurial: hg clone https://code.google.com/p/flowd/
Buile Instructions: autoreconf configure make make install
Review ''man flowd.conf'' , ''man flowd'' and INSTALL for configuration
This dumps the contents of the flowd log as text to the console similar to the flow-reader, reader.py and reader.pl programs
(with-open-log (flog "/var/log/flowd/flowd.bin") (do ((f (read-flow flog) (read-flow flog))) ((eql f nil)) (format-flow t f)))