The ability to collect flows only between local networks

[The-Astiks]

We use nProbe in collector mode and collect flows for all interactions with external networks.
But we would also like to be able to filter the NetFlow/sFlow streams received by nProbe so that only flows between our networks are saved, and everything that has an external source or destination address is discarded.

For example, if there are local networks 10.0.0.0/8 and 1.2.3.0/24:

10.0.0.0/8 <-> 10.0.0.0/8 - pass and store
1.2.3.0/24 <-> 1.2.3.0/24 - pass and store
10.0.0.0/8 <-> 1.2.3.0/24 - pass and store
external <-> local - filter out and discard

It would be great if you could implement similar functionality.

[cardigliano]

Did you check the --collection-filter option?

[The-Astiks]

Yes, but how can we use it to discard all flows related with external networks?

We have a public network too, so if we permit only our networks in collection-filter (e.g. --collection-filter=a.b.c.d/n, ...), we will store all flows sourced from or destined to networks a.b.c.d/n and so on, isn't it?

Flows from external to our public a.b.c.d/n will pass. Please correct me if I understood something wrong.