ElastiFlow v2.0.0 Release Notes
-
π ElastiFlowβ’ 2.0.0 is a major release which adds support for IPFIX and sFlow, in addition to Netflow v5 and v9.
π New Features
- π Support added for IPFIX (#34)
- π Support added for sFlow (#26)
- Index name changed from netflow to elastiflow.
- All flow types are normalized under the flow object (previously Netflow v5 and v9 were normalized to a netflow object), but all original data is retained.
- Reworked Top-N dashboards. Now includes Top Talkers, Top Services and Top Conversations (replace old Conversations dashboard).
- Reworked Geo Location dashboards. Now includes client/server and source/destination perspectives.
- β‘οΈ Autonomous System dashboard updated to simplify analysis of traffic to/from Autonomous Systems.
- π Changed most timelion graphs to display bit/s instead of bytes/s (requested by a number of users)
- π Index Pattern now imported via Kibana API. (see README.md)
π Fixes
- π Change netflow.conn_id to a long (#33)
β‘οΈ Updates
- β‘οΈ License updated.