I am learning ipfix and found a cmd like this: "tshark -r ipfix.cap -n -d udp.port==4379,cflow -O cflow." What the cflow means here? I was also told to filter cflow if i use wireshark in Windows.
Correct the title: what's cflow in ipfix? This is my question.
cflow stands for Cisco Flow. Cisco originally designed NetFlow, so some people started calling it cflow.
Wireshark · Display Filter Reference: Cisco NetFlow/IPFIX
Thanks!
