Last active
November 1, 2020 09:25
-
-
Save candlerb/e229cd1453ae842ac319d6a332091faf to your computer and use it in GitHub Desktop.
nfacctd configuration for tracking most active local IP addresses (inbound and outbound)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| nfacctd_port: 2055 | |
| plugins: memory[inbound], memory[outbound] | |
| imt_path[inbound]: /tmp/inbound.pipe | |
| aggregate_filter[inbound]: dst net 10.0.0.0/8 or dst net 192.0.2.0/24 or dst net 2001:db8::/32 | |
| aggregate[inbound]: dst_host, src_net | |
| imt_mem_pools_number[inbound]: 64 | |
| imt_mem_pools_size[inbound]: 65536 | |
| imt_path[outbound]: /tmp/outbound.pipe | |
| aggregate_filter[outbound]: src net 10.0.0.0/8 or src net 192.0.2.0/24 or src net 2001:db8::/32 | |
| aggregate[outbound]: src_host, dst_net | |
| imt_mem_pools_number[outbound]: 64 | |
| imt_mem_pools_size[outbound]: 65536 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment