Skip to content

@robcowart robcowart released this Feb 4, 2018 · 186 commits to master since this release

ElastiFlow™ 2.0.0 is a major release which adds support for IPFIX and sFlow, in addition to Netflow v5 and v9.

It includes the following features:

  1. Support added for IPFIX (#34)

  2. Support added for sFlow (#26)

  3. Index name changed from netflow to elastiflow.

  4. All flow types are normalized under the flow object (previously Netflow v5 and v9 were normalized to a netflow object), but all original data is retained.

  5. Reworked Top-N dashboards. Now includes Top Talkers, Top Services and Top Conversations (replace old Conversations dashboard).

  6. Reworked Geo Location dashboards. Now includes client/server and source/destination perspectives.

  7. Autonomous System dashboard updated to simplify analysis of traffic to/from Autonomous Systems.

  8. Changed most timelion graphs to display bit/s instead of bytes/s (requested by a number of users)

  9. Index Pattern now imported via Kibana API. (see README.md)

  10. Change netflow.conn_id to a long (#33)

  11. License updated.

Assets 2
You can’t perform that action at this time.