Hi all, I have reworked significantly the code that handles multihoming, NAT & co. For each multihomed host, ntop keeps now a separate record. For instance if host X whose MAC is A has three IP addresses C, D, E, this is what's happening:
- "old" ntop 1 record for MAC A and three IP addresses associated - "new" ntop - 3 records A/C, A/D, A/E so that you can see exactly the traffic for each host This should also solve problems: PIX masquerades all the hosts is the DMZ. Make sure to understand how ntop works. ntop believes that a host is multihomed if the MAC address of such host is local (i.e. it's the real host MAC and not the router's MAC), and the multihomed addresses are local. If the multihomed addresses are not local, please specify them with -m. For instance in suppose you have ntop running on the Internet trunk and have a PIX that masquerades all the hosts of the DMZ whose addresses belong to 1.2.3.0/255.255.255.0. As ntop is NOT running on DMZ, ntop believes that hosts 1.2.3.0/255.255.255.0 are 1) real and 2) remote hence they are reached via the PIX. As all the hosts are in practice masqued by the PIX, you need to start "ntop -m 1.2.3.0/255.255.255.0". Please resync ntop with CVS and let me know if the code works. If so I want to release a new beta soon and then finalize the code. Cheers, Luca _______________________________________________ Ntop-dev mailing list [EMAIL PROTECTED] http://listmanager.unipi.it/mailman/listinfo/ntop-dev