Changes between Version 4 and Version 5 of renetcolGUI

Timestamp:

09/13/07 13:16:50 (15 years ago)

Author:

andreu

Comment:

--

renetcolGUI

@@ -21 +21 @@
 
 == First Start ==
+
+Please note that all buttons and selection windows have a tip.[[BR]]
+When renetcolGUI is launched, it's possible to have some warning. The first output is the following:
+{{{
+#!c
+---------------------------------------------------------------
+In this version 0.0.7, you can apply rules on the collector based on the following fields:
+IN_BYTES: 1,
+L4_SRC_PORT: 7,
+IPV4_SRC_ADDR: 8,
+INPUT_SNMP: 10,
+L4_DST_PORT: 11,
+IPV4_DST_ADDR: 12,
+OUTPUT_SNMP: 14,
+IPV4_NEXT_HOP: 15,
+BGP_IPV4_NEXT_HOP: 18,
+IPV6_SRC_ADDR: 27,
+IPV6_DST_ADDR: 28,
+MPLS_TOP_LABEL_TYPE: 46,
+IPV6_NEXT_HOP: 62,
+BPG_IPV6_NEXT_HOP: 63,
+IP_PROTOCOL_VERSION: 60, please note that the IPv4 templates don't have this field
+ROUTER_SRC_ADDR: 0, !!! it's not a real number for a field, but it's a great function
+----------------------------------------------------------------
+}}}
+It's the list of fields which can be used for the selection of a flow.[[BR]]
+In the window, the first action is to activate the flows reception with a click on the File/ReceiveStream button.[[BR]]
+After, you can used the collecteor control button and entered a rule which be applied on the collector.[[BR]]
+
+To see all flows from a router, enter `0 = 10.0.0.1` where `10.0.0.1` is the loopback who is used by the router to send the NetFlow export to the collector.[[BR]]
+To see all IPv6 flows which are on your network, enter `60 = 6` for field 60 (IP Protocol), value 6 (IPv6).[[BR]]
+To see all flows from a IPv4 address, enter `8 = 192.168.0.1` and after validation, the second rules `12 = 192.168.0.1` (8 is IPV4_SRC_ADDR and 12 is IPV4_DST_ADDR).[[BR]]
+
+If too many flows are received by the GUI, you can freeze the screen with the FREEZE button. Note that during the freeze all flows received by the GUI are lost, except if you used the record option.[[BR]]
+
+
+