Re: [Ntop] How to Analyse MikroTik Traffic Using nprobe -> ntopng on Windows

Sun, 23 Dec 2018 15:19:01 -0800 

Update to the below, as per what Ive posted to the mailing list:
We have Multiple nProbe sites with Mikrotik routers, and want to send flows to one remote ntopng instance running on a Windows machine. 

Starting with the local site all behind the same Firewall / on same LAN:
Mikrotik is setup to send NetFlow to the IP of the host running nprobe & ntopng: 192.168.88.2 

ntopng started as service with the below CMD:

ntopng /i -i tcp://*:5556c

And nprobe with:
nprobe /i my_nprobe --zmq "tcp://<192.168.88.2>:5556" --zmq-probe-mode -i none -n none --collector-port 2055 -T "@NTOPNG@" 

As per the steps outlined here:

https://www.ntop.org/nprobe/best-practices-for-the-collection-of-flows-with-ntopng-and-nprobe/

However ntopng when loaded shows only:
No packet has been received yet on interface tcp://*:5556c. Please wait 6 seconds until this page reloads. 

Have also tried the steps outlined below to no avail:

https://www.ntop.org/ntopng/how-to-analyse-mikrotik-traffic-using-ntopng/

Any help greatly appreciated,

Johan.





On 2018-12-23 13:12, [email protected] wrote:

Hi there,

We have one simple requirement:

To accurately record how much bandwidth each user is using, across our
several sites, over a day / week / month / year. Realtime data nice to
have but not necessary.

I say 'simple requirement' however having tried many ways to achieve
this over years its been anything but simple. (For us anyhow.)

With ntopng now being able to record historical data we're feeling
encouraged to try ntop again.

As such we've acquired the needed licenses, instructed our Mikrotik to
send NetFlow to the Windows PC running nProbe & ntopng, and created
the needed license file.

However I cannot figure out how to start nprobe service to capture the
Mikrotik flows and send them to ntopng.

What are the correct Windows cmd's to start nprobe & ntopng, to
capture NetFlow from Mikrotik please?

Lots of tutorials like the one below for starting on Linux but no so
much on Windows:

https://www.ntop.org/ntopng/how-to-analyse-mikrotik-traffic-using-ntopng/

We seem to need the Windows equivalent of the below however:

nprobe -i none -n none -3 2055 --zmq tcp://127.0.0.1:1234
ntopng -i tcp://127.0.0.1:1234

Help greatly appreciated,

Best,

Johan.

_______________________________________________
Ntop mailing list
[email protected]
http://listgateway.unipi.it/mailman/listinfo/ntop

_______________________________________________
Ntop mailing list
[email protected]
http://listgateway.unipi.it/mailman/listinfo/ntop

Reply via email to