[tor-relays] clarification on what Utah State University exit relays store ("360 gigs of log files")
coderman at gmail.com
Sat Aug 22 14:53:27 UTC 2015
On 8/21/15, Mike Perry <mikeperry at torproject.org> wrote:
>> For those into researching other flow capabilities...
>> There are also some probes in OS kernels and
>> some other opensource taps, they're not as well known
>> or utilized as nProbe.
>> Other large hardware vendors include Brocade, Avaya,
>> Huawei, and Alcatel-Lucent.
> Out of all of these, I was only able find info on Alcatel-Lucent. It
> uses cflowd, which appears to be a common subcomponent. It's timeout
> ranges are the same as Cisco IOS.
for posterity, it would also be useful to scrutinize behavior of:
- Arbor Peakflow SP
- Narus Insight Manager
- Lancope StealthWatch Xe
with respect to soft or hard fixed NetFlow limits within analysis or
as pushed to tapped switches.
More information about the tor-relays