After spending weekend trying to build 2.0.99 and the lates built in MinGW I am back.
> 1. Try ntop -Z > (it should complain that -Z isn't a valid parameter) it displays help > 2. Try ntop -- -t 3 ... still the same - it ignores the filter expression > 3. You can download the 2.0.99 source and build it yourself... > docs/BUILD-MinGW.txt I did download the latest snapshoot and the 2.0.99 (ntop-02-04-03) and I did follow instructions in docs/BUILD-MinGW.txt but I have not succeeded. - The makefile does not seem to be for NT (it uses some unix commands like rm etc..., anyhow, I installed the NT resourcekit which does have the commands). - The makefile tried to compile some files which are in the obsolete directory. So I have deleted their name from the makefile....it looks like the makefile is not the latest one ;-) - it did not succeed compiling the files from plugins directory...I compiled them maually ...so I get at the end of compilation, but... plugin.o(.text+0x214):plugin.c: undefined reference to `sflowPluginEntryFctn' ...and I gave up. Well I knew the compilation in NT would not be straight forward and using linux or solaris is not an option for me, that's why I have registered to get the compiled version. Unfortunatelly the filters seems not to work in 2.0 under NT. Can someone please compile the NT 2.0.99 version (or whatever version supporting the -B parameter) and put to the ftp server so I can download it. Thank you. Kind Regards Vaclav Chaloupka > -----Original Message----- > From: Burton M. Strauss III [mailto:[EMAIL PROTECTED]] > Sent: Friday, 03 May, 2002 16:04 > To: Ntop > Cc: Chaloupka, Vaclav > Subject: RE: [Ntop] ntop filter expression > > > MinGW has some limitations, but I thought that getopt would > work. It almost > looks like it is totally ignoring the options... > > 1. Try ntop -Z > (it should complain that -Z isn't a valid parameter) > > 2. Try ntop -- -t 3 ... > > 3. You can download the 2.0.99 source and build it yourself... > docs/BUILD-MinGW.txt > > The demo on www.ntop.org is 2.0.1, which supports -B: > > ntop -B "src or dst 192.168.42.1" -t 5 > ... > 03/May/2002 08:59:45 [...] Set filter "src or dst > 192.168.42.1" on device .... > > I don't know wrt 2.0... the usual recommendation is to run a > more recent > version using the -B parameter. > > > > -----Burton > > PS: all replies should go to the list, not me personally unless you're > interested in paid support... > > -----Original Message----- > From: Chaloupka, Vaclav [mailto:[EMAIL PROTECTED]] > Sent: Friday, May 03, 2002 7:30 AM > To: '[EMAIL PROTECTED]' > Subject: RE: [Ntop] ntop filter expression > > > c:\Program Files\ntop-Win32>ntop.exe -t 3 "src host > 54.111.51.32 or dst host > 54. > 111.51.32 > Wait please: ntop is coming up... > 03/May/2002 14:28:54 Initializing IP services... > 03/May/2002 14:28:54 Initializing GDBM... > 03/May/2002 14:28:54 Initializing network devices... > 03/May/2002 14:28:54 Found interface [index=0] > '\Device\Packet_CpqNF31' > 03/May/2002 14:28:55 ntop v.2.0 MT [WinNT/2K/XP] (27/12/2001 build) > 03/May/2002 14:28:55 Listening on [\Device\Packet_CpqNF31] > 03/May/2002 14:28:55 Copyright 1998-2001 by Luca Deri <[EMAIL PROTECTED]> > 03/May/2002 14:28:55 Get the freshest ntop from http://www.ntop.org/ > 03/May/2002 14:28:55 Initializing... > 03/May/2002 14:28:55 Loading plugins (if any)... > 03/May/2002 14:28:55 Welcome to icmpWatchPlugin. (C) 1999 by > Luca Deri. > 03/May/2002 14:28:55 Welcome to nfsWatchPlugin. (C) 1999 by Luca Deri. > 03/May/2002 14:28:55 Resetting traffic statistics... > 03/May/2002 14:28:57 Started thread (184) for network packet analyser. > 03/May/2002 14:28:57 Started thread (136) for host traffic statistics. > 03/May/2002 14:28:57 Started thread (124) for throughput update. > 03/May/2002 14:28:57 Started thread (188) for idle hosts detection. > 03/May/2002 14:28:57 Started thread (192) for idle TCP > sessions detection. > 03/May/2002 14:28:57 Started thread (200) for DNS address resolution. > 03/May/2002 14:28:57 Started thread (204) for address purge. > 03/May/2002 14:28:57 Initializing plugins (if any)... > 03/May/2002 14:28:57 Waiting for HTTP connections on port 3000... > 03/May/2002 14:28:57 Sniffying... > 03/May/2002 14:28:58 Started thread (224) for network packet > sniffing on > \Device > \Packet_CpqNF31. > 03/May/2002 14:29:13 Extending hash: [old=32, new=48] > > Vaclav > > > -----Original Message----- > > From: Burton Strauss [mailto:[EMAIL PROTECTED]] > > Sent: Friday, 03 May, 2002 14:29 > > To: Chaloupka, Vaclav > > Subject: RE: [Ntop] ntop filter expression > > > > > > Add -t 3 (trace level) to your startup... that should print > > out the info messages... > > > > -----Burton > > > > ---------- Original Message ---------------------------------- > > From: "Chaloupka, Vaclav" <[EMAIL PROTECTED]> > > Date: Fri, 03 May 2002 08:16:51 -0400 > > > > >I did check that but I haven't seen one. Ok, here it is. > > > > > >c:\Program Files\ntop-Win32>ntop.exe "src host 54.111.51.32 > > or dst host > > >54.111.5 > > >1.32" > > >Wait please: ntop is coming up... > > >03/May/2002 14:01:07 Initializing IP services... > > >03/May/2002 14:01:07 Initializing GDBM... > > >03/May/2002 14:01:07 Initializing network devices... > > >03/May/2002 14:01:07 Found interface [index=0] > > '\Device\Packet_CpqNF31' > > >03/May/2002 14:01:07 ntop v.2.0 MT [WinNT/2K/XP] (27/12/2001 build) > > >03/May/2002 14:01:07 Listening on [\Device\Packet_CpqNF31] > > >03/May/2002 14:01:07 Copyright 1998-2001 by Luca Deri > <[EMAIL PROTECTED]> > > >03/May/2002 14:01:07 Get the freshest ntop from > http://www.ntop.org/ > > >03/May/2002 14:01:07 Initializing... > > >03/May/2002 14:01:07 Loading plugins (if any)... > > >03/May/2002 14:01:08 Welcome to icmpWatchPlugin. (C) 1999 by > > Luca Deri. > > >03/May/2002 14:01:08 Welcome to nfsWatchPlugin. (C) 1999 by > > Luca Deri. > > >03/May/2002 14:01:08 Resetting traffic statistics... > > >03/May/2002 14:01:09 Started thread (184) for network packet > > analyser. > > >03/May/2002 14:01:09 Started thread (136) for host traffic > > statistics. > > >03/May/2002 14:01:10 Started thread (124) for throughput update. > > >03/May/2002 14:01:10 Started thread (188) for idle hosts detection. > > >03/May/2002 14:01:10 Started thread (192) for idle TCP > > sessions detection. > > >03/May/2002 14:01:10 Started thread (200) for DNS address > resolution. > > >03/May/2002 14:01:10 Started thread (204) for address purge. > > >03/May/2002 14:01:10 Initializing plugins (if any)... > > >03/May/2002 14:01:10 Waiting for HTTP connections on port 3000... > > >03/May/2002 14:01:10 Sniffying... > > >03/May/2002 14:01:10 Started thread (224) for network packet > > sniffing on > > >\Device > > >\Packet_CpqNF31. > > >03/May/2002 14:01:17 Extending hash: [old=32, new=48] > > > > > >No mention of filter.... > > > > > >If I do > > >c:\Program Files\ntop-Win32>ntop blahblah > > >Wait please: ntop is coming up... > > >03/May/2002 14:02:40 Initializing IP services... > > >03/May/2002 14:02:40 Initializing GDBM... > > >03/May/2002 14:02:40 Initializing network devices... > > >03/May/2002 14:02:40 Found interface [index=0] > > '\Device\Packet_CpqNF31' > > >03/May/2002 14:02:40 ntop v.2.0 MT [WinNT/2K/XP] (27/12/2001 build) > > >03/May/2002 14:02:40 Listening on [\Device\Packet_CpqNF31] > > >03/May/2002 14:02:40 Copyright 1998-2001 by Luca Deri > <[EMAIL PROTECTED]> > > >03/May/2002 14:02:41 Get the freshest ntop from > http://www.ntop.org/ > > >03/May/2002 14:02:41 Initializing... > > >03/May/2002 14:02:41 Loading plugins (if any)... > > >03/May/2002 14:02:41 Welcome to icmpWatchPlugin. (C) 1999 by > > Luca Deri. > > >03/May/2002 14:02:41 Welcome to nfsWatchPlugin. (C) 1999 by > > Luca Deri. > > >03/May/2002 14:02:41 Resetting traffic statistics... > > >03/May/2002 14:02:43 Started thread (184) for network packet > > analyser. > > >03/May/2002 14:02:43 Started thread (136) for host traffic > > statistics. > > >03/May/2002 14:02:43 Started thread (124) for throughput update. > > >03/May/2002 14:02:43 Started thread (188) for idle hosts detection. > > >03/May/2002 14:02:43 Started thread (192) for idle TCP > > sessions detection. > > >03/May/2002 14:02:43 Started thread (200) for DNS address > resolution. > > >03/May/2002 14:02:43 Started thread (204) for address purge. > > >03/May/2002 14:02:43 Initializing plugins (if any)... > > >03/May/2002 14:02:43 Waiting for HTTP connections on port 3000... > > >03/May/2002 14:02:43 Sniffying... > > >03/May/2002 14:02:44 Started thread (224) for network packet > > sniffing on > > >\Device > > >\Packet_CpqNF31. > > >03/May/2002 14:02:56 Extending hash: [old=32, new=48] > > > > > >...no mention of WRONG FILTER. (I do not believe blahblah is > > correct filter > > >expression, is it :-) Weird! It looks like it ignores the > > "non-options" > > >parameters. > > > > > >I tried the -R option it worked but understood that -R can't > > filter on IP > > >address, only on protocols. So this would not help. Anyhow, > > this seems to > > >work. > > > > > >c:\Program Files\ntop-Win32>ntop -R rules.txt > > >Wait please: ntop is coming up... > > >03/May/2002 14:06:08 Initializing IP services... > > >03/May/2002 14:06:08 Initializing GDBM... > > >03/May/2002 14:06:08 Initializing network devices... > > >03/May/2002 14:06:08 Found interface [index=0] > > '\Device\Packet_CpqNF31' > > >03/May/2002 14:06:08 ntop v.2.0 MT [WinNT/2K/XP] (27/12/2001 build) > > >03/May/2002 14:06:08 Listening on [\Device\Packet_CpqNF31] > > >03/May/2002 14:06:08 Copyright 1998-2001 by Luca Deri > <[EMAIL PROTECTED]> > > >03/May/2002 14:06:08 Get the freshest ntop from > http://www.ntop.org/ > > >03/May/2002 14:06:08 Initializing... > > >03/May/2002 14:06:08 Parsing ntop rules... > > >... > > > > > >I guess it must be specific to the version we have. We have > > paid the fee to > > >get the version compiled for Win32 (as Windows does not come > > with compiler > > >bulit in :-). But it never worked. Do you know when can we > > get the newer > > >version which would work with the filters (2.0.99 I believe?). > > > > > >Thanks again > > > > > >Regards > > > > > >Vaclav > > > > > > > > >------------------------------------------------------------- > > ----------------- > > >Notice: This e-mail message, together with any attachments, > > contains information of Merck & Co., Inc. (Whitehouse > > Station, New Jersey, USA) that may be confidential, > > proprietary copyrighted and/or legally privileged, and is > > intended solely for the use of the individual or entity named > > in this message. If you are not the intended recipient, and > > have received this message in error, please immediately > > return this by e-mail and then delete it. > > > > > >============================================================= > > ================= > > > > > > > > > > > > __________________________________________________ > > D O T E A S Y - "Join the web hosting revolution!" > > http://www.doteasy.com > > > ------------------------------------------------------------------------------ Notice: This e-mail message, together with any attachments, contains information of Merck & Co., Inc. (Whitehouse Station, New Jersey, USA) that may be confidential, proprietary copyrighted and/or legally privileged, and is intended solely for the use of the individual or entity named in this message. If you are not the intended recipient, and have received this message in error, please immediately return this by e-mail and then delete it. ============================================================================== _______________________________________________ Ntop mailing list [EMAIL PROTECTED] http://listgateway.unipi.it/mailman/listinfo/ntop
