Programster's Blog

Tutorials focusing on Linux, programming, and open-source

NFDump Cheatsheet

nfdump

Read a Binary NFDump File to Stdout

nfdump -r [inpput file]

This will read it to stdout in ASCII form, which you could then pipe to a file. So the command below will convert a binary format to ASCII

nfdump -r [inpput file] > [output file]

Convert to CSV

nfdump -r 1444458540 -o csv > output.csv

Sort by time

nfdump -r [input file] -O tstart > output.txt

Filter IP

To grab all the flows that relate to either going to, or coming from a specific IP then just specify it like the example below

nfdump -r [input file] 'net 8.8.8.8/32'

References

SourceForge - NFDUMP Documentation
Ubuntu Manuals - nfdump

Last updated: 16th August 2018
First published: 16th August 2018

This blog is created by Stuart Page

I'm a freelance web developer and technology consultant based in Surrey, UK, with over 10 years experience in web development, DevOps, Linux Administration, and IT solutions.

Need support with your infrastructure or web services?

Get in touch