wanderer/ fastnetmon-ng
1
1
Fork 0
Code Issues 2 Pull Requests Projects 1 Releases Activity

Fix netflow v5 port parser

This commit is contained in:
Pavel Odintsov 2015-03-23 12:11:29 +03:00
parent b002ab2f06
commit c93b1bad66
1 changed files with 5 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
src/netflow_plugin/netflow_collector.cpp
View File

@ -787,12 +787,15 @@ void process_netflow_packet_v5(u_int8_t *packet, u_int len) {
// TODO: we should pass data about "flow" structure of this data
// htobe64 removed
current_packet.length = ntohl(nf5_flow->flow_octets);
current_packet.number_of_packets = ntohl(nf5_flow->flow_packets);
current_packet.length = fast_ntoh(nf5_flow->flow_octets);
current_packet.number_of_packets = fast_ntoh(nf5_flow->flow_packets);
// We did not support sampling for netflow :(
current_packet.sample_ratio = 1;
current_packet.source_port = fast_ntoh(nf5_flow->src_port);
current_packet.destination_port = fast_ntoh(nf5_flow->dest_port);
switch (nf5_flow->protocol) {
case 1: {
//ICMP
@ -804,9 +807,6 @@ void process_netflow_packet_v5(u_int8_t *packet, u_int len) {
// TCP
current_packet.protocol = IPPROTO_TCP;
current_packet.source_port = nf5_flow->src_port;
current_packet.destination_port = nf5_flow->dest_port;
// TODO: flags can be in another format!
current_packet.flags = nf5_flow->tcp_flags;
}
@ -815,9 +815,6 @@ void process_netflow_packet_v5(u_int8_t *packet, u_int len) {
case 17: {
// UDP
current_packet.protocol = IPPROTO_UDP;
current_packet.source_port = nf5_flow->src_port;
current_packet.destination_port = nf5_flow->dest_port;
}
break;
}