This workflow calculates and visualizes connection statistics of IP addresses in a computer network. The package data of a small network was captured using Wireshark and exported as csv. The IP addresses were anonymized and enriched by assigning geo location data, such as latitude, longitude, city, country, and country flags to the IP addresses. This can be done using free, public services, such as freegeoip.net. The workflow calculates and visualizes the top N most frequent destination ports, IPs, and assigned countries for each IP address. Additionally, the geo locations of the destination IPs will be marked in an open street map visualization. The IP addresses to include in the analysis as well as the number N can be selected in the configuration dialog of the "Source IP Selection" component. The results of the analysis are shown in a report.
This is a companion discussion topic for the original entry at https://kni.me/w/uW8KY68vOO2GvTyk