I upgraded to the most recent ntop and have a couple of issues; RH 7.1 ntop v.2.0.0 MT (SSL) [i686-pc-linux-gnu] ./ntop -P /var/log/ntop -m 172.19.0.0/16 -w 3000 -E -S 1 -r 60 -u ntop -d
? Ntop Issues ? 1. IP Traffic Matrix shows no data, at all. 2. using -p with a custom protocol listing appends to the default table Issues that are specific to me, hoping someone can offer some assistance here. I am collecting data, but not all, not by far. Monitoring station is connected to a 3com 3300xm vlan enabled switch. All main servers and router are connected to this in order for me to monitor the traffic. The file server does not show any active connections even though all clients map to it. This and the mail server "should" be the most active yet the only data i show for our mail (Exchange) server is notification mail that is sent from the monitoring box, which uses exchange as its relay. I understand that exchange uses port 135 and rpc based app for it's functions. Does anyone have a way to track this? Another example would be that i ftp from my workstation to an outside site. To get there the traffic is going through the router (3640) out the firewall and back. All traffic on this lan goes through this router, it is connected to the switch in question, ntop should pick this traffic up, should it not?? Same thing for http traffic, it all goes to our proxy, again on the switch. But no traffic is being seen from/to the proxy, this should also be heavy. I need some clarification on working with ntop within a switched environment. I don't understand why i am getting so little data. Thanks for any and all help. Cheers, Stuart PRIVILEGED / CONFIDENTIAL INFORMATION may be contained in this message. If you are not the addressee indicated in this message or the employee or agent responsible for delivering it to the addressee, you are hereby on notice that you are in possession of confidential and privileged information. Any dissemination, distribution, or copying of this e-mail is strictly prohibited. In such case, you should destroy this message and kindly notify the sender by reply e-mail. Please advise immediately if you or your employer do not consent to Internet email for messages of this kind. Opinions, conclusions, and other information in this message that do not relate to the official business of the sender's firm shall be understood as neither given nor endorsed by it. E-mail cannot be guaranteed to be secure, error free or free from viruses. Royal does not accept any liability whatsoever for any loss or damage which may be caused as a result of the transmission of this e-mail. _______________________________________________ Ntop mailing list [EMAIL PROTECTED] http://listmanager.unipi.it/mailman/listinfo/ntop
