Skip to content
/ libnfdump Public

libnfdump - library to natively access netflow records stored by nfcapd

3 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

haegardev/libnfdump

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

114 Commits
examples
examples
 
 
nfdump/nfdump-1.6.2
nfdump/nfdump-1.6.2
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
TODO
TODO
 
 

Repository files navigation

libnfdump

libnfdump - library to natively access netflow records stored by nfcapd

The program nfreader of nfdump-1.6.2 has been mutated to a library. The goal is to access directly from external programs to the master_record_t structure without having to pass through standard output and standard input or other temporary files.

Building libnfdump

nfdump-1.6.2$ ./configure --enable-libnfdump

nfdump-1.6.2$ make

nfdump-1.6.2$ make install

Testing libnfdump

nfdump-1.6.2/bin/testlibnfdump <full_path_to_library> <nfcapd_file>

Functions

libnfstates_t* initlib(char* Mdirs, char* rfile, char* Rfile);

master_record_t* get_next_record(libnfstates_t* states);

void libcleanup(libnfstates_t* states);

Description

The initlib functions returns a structure of states of an instance of libnfdump. On errors NULL is returned. The function get_next_record returns the next encountered record. If there are no records NULL is returned.

More details can be found in the libnfdump wiki or in the man page of libnfdump. https://github.com/haegardev/libnfdump/wiki

About

libnfdump - library to natively access netflow records stored by nfcapd

Resources

Readme
Activity

Stars

3 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages