Releases: activecm/ipfix-rita
v0.0.-beta.5
Updated support for IPFix, relative timestamps are now fully supported. Increased the import version for support with RITA. Time zone issue is resolved. Some changes to files included when the installer is built, and minor changes for developers
Netflow v5 support
Changes
Documentation changes, including list for known bugs. Adding support for MikroTik router. Installer can
use commands from the README.md (though you still need to insure compatibility
with RITA's MongoDB instance). Docs folder is now distributed with the release tar file.
The most significant change this release was adding support for Netflow v5.
IPFIX-RITA has been fully tested from log collection, through RITA analysis and compatibility with
AI-Hunter
Installation
To begin installing IPFIX-RITA, first install RITA, then use the installer above. Please make sure to read the included README.md before running the installer.
Requirements:
- Docker 17.06+
- docker-compose 1.17+
- RITA 1.1.0+
IPFIX/Netflow v9/Netflow V5 Compatibility
This is an incomplete list of devices which produce compatible IPFix/Netflow v9/Netflow v5 records. More devices will be added as they are tested.
Please select the most basic version of IPFix/Netflow v9/Netflow v5 when setting up your router for use with IPFIX-RITA.
| IPFIX | Netflow v9 | Netflow v5 | Notes | |
|---|---|---|---|---|
| Cisco ASA | ✔ | |||
| Cisco ASR 9k | ✔ | |||
| SonicWall | ✔ | |||
| MikroTik | ✔ | ✔ | ||
| YAF | ✔ | Use --uniflow |
What Do I Do If My Router Isn't On the List?
We need your help to expand the list of supported routers. Please help us by running the software,
logging the errors and traffic, and sending us the results.
Please see Adding Support For Additional Routers for more information.
Updated Installer
Changes
The installer made use of GNU awk but did not ensure it was installed. Now it uses awk commands which are also compatible with mawk.
Installation
To begin installing IPFIX-RITA, first install RITA, then use the installer above. Please make sure to read the included README.md before running the installer.
Requirements:
- Docker 17.06+
- docker-compose 1.17+
- RITA 1.1.0+
IPFIX/ Netflow v9 Compatibility
This is an incomplete list of devices which produce compatible IPFIX/ Netflow v9 records. More devices will be added as they are tested.
Please select the most basic version of IPFIX/ Netflow v9 when setting up your router for use with IPFIX-RITA.
| IPFIX | Netflow v9 | Notes | |
|---|---|---|---|
| Cisco ASA | ✔ | ||
| Cisco ASR 9k | ✔ | ||
| SonicWall | ✔ | ||
| YAF | ✔ | Use --uniflow |
What Do I Do If My Router Isn't On the List?
We need your help to expand the list of supported routers. Please help us by running the software,
logging the errors and traffic, and sending us the results.
Please see Adding Support For Additional Routers for more information.
v0.0.2 Minor Fix in Installer
Changes
The minimum required version of docker-compose is 1.17, not 1.16. The installer has been modified to enforce this check and provide an appropriate warning.
Installation
To begin installing IPFIX-RITA, first install RITA, then use the installer above. Please make sure to read the included README.md before running the installer.
Requirements:
- Docker 17.06+
- docker-compose 1.17+
- RITA 1.1.0+
IPFIX/ Netflow v9 Compatibility
This is an incomplete list of devices which produce compatible IPFIX/ Netflow v9 records. More devices will be added as they are tested.
Please select the most basic version of IPFIX/ Netflow v9 when setting up your router for use with IPFIX-RITA.
| IPFIX | Netflow v9 | Notes | |
|---|---|---|---|
| Cisco ASA | ✔ | ||
| Cisco ASR 9k | ✔ | ||
| SonicWall | ✔ | ||
| YAF | ✔ | Use --uniflow |
What Do I Do If My Router Isn't On the List?
We need your help to expand the list of supported routers. Please help us by running the software,
logging the errors and traffic, and sending us the results.
Please see Adding Support For Additional Routers for more information.
Initial Release v0.0.1
To begin installing IPFIX-RITA, first install RITA, then use the installer above. Please make sure to read the included README.md before running the installer.
Requirements:
- Docker 17.06+
- docker-compose
1.16+1.17+ (NOTE: The installer WILL FAIL if run with docker-compose version 1.16) - RITA 1.1.0+