Hello,
we had hoped to use flow logs from Suricata for our security analysis but since Suricata only exports flow records at the end of the flow, it is unfortunately not possible for us to use the logs as we had hoped.
I found these feature requests:
https://redmine.openinfosecfoundation.org/issues/2301
https://redmine.openinfosecfoundation.org/issues/4285
Are there any plans for implementing support for this?
Best regards,
Arne