|
On an older version of Ntop it would show the port used (up to 1024 I think) by ip address's. We used it several times to track down viruses. We could nmap a port and look at the ntop screen to show the port info. It was one of the best features we used a lot.
Yes all the other places seem to have the proper information, but when looking into viruses it is much easier to look at all on one screen.
Mine also does display the "No Data To Display (yet)".
Thanks.
>>> [EMAIL PROTECTED] 03/22 3:34 PM >>> Maybe on a slight tangent here, but just what is the IP > Local > Ports Used screen supposed to show?
I have never really looked at that screen before. The reason I ask is that I'm not seeing anything on that screen either. But I DO get port info for all my hosts, port info under IP > Summary > Traffic, port info under All Protocols > Traffic, it's tracking sessions no problem.....What I'm getting at is that Ntop seems to have all the info that it would need to display what I would THINK would be displayed under IP > Local > Ports Used (a summary of all ports used by local machines).
Mine gives a different message, though - just "No Data To Display (yet)". And that's after 34 days of continuous running and getting close to a billion packets processed. Are you still getting that message about the -z flag, David? Are you seeing port info in other places?
Thanks,
Chris From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of David Curtis Sent: Tuesday, March 22, 2005 12:30 PM To: [email protected] Subject: RE: [Ntop] Port Usage report missing (was I have ntopsetup...) I am not sure where else to look for help. Ntop has been running for 4 days. It has not port information. I have tried with the -z on and off and still getting nothing.
Any other idea's.
>>> [EMAIL PROTECTED] 03/17 6:21 PM >>> Admin | Configure | Startup options
it's on one of those screens.
-----Burton From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of David Curtis Sent: Thursday, March 17, 2005 1:32 PM To: [email protected] Subject: RE: [Ntop] Port Usage report missing (was I have ntopsetup...) >>> [EMAIL PROTECTED] 03/17 2:15 PM >>> Check the web configuration - make sure 'enable sessions' is set to Yes.
-----Burton From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of David Curtis Sent: Thursday, March 17, 2005 1:07 PM To: [email protected] Subject: Re: [Ntop] Port Usage report missing (was I have ntopsetup...) I also keep getting this on some screens. I have simply copied the ntop.conf.sample into /etc/ntop.conf and run ntop @/etc/ntop.conf. I can send the conf file if you want to see it but there is no -z or --disable-sessions set.
The requested data is not available when ntop is
started with the command line flag -z or --disable-sessions >>> [EMAIL PROTECTED] 03/17 11:51 AM >>> 1. Make sure -z | --disable-sessions is NOT set, neither from the command line, nor the web server configuration page.
2. You know, it looks like when Luca changed the allocation of portsUsage from a fixed array to a linked list, he forgot to remove the 'is it allocated' test in sessions.c and to fix the report itself in reports.c... I don't have time to play with this right now, but try the attached patch (let's move this to ntop-dev).
-----Burton
********************************************************************** Confidential/Proprietary Note The information in this email is confidential and may be legally privileged. Access to this email by anyone other than the intended addressee is unauthorized. If you are not the intended recipient of this message, any review, disclosure, copying, distribution, retention, or any action taken or omitted to be taken in reliance on it is prohibited and may be unlawful. If you are not the intended recipient, please reply to or forward a copy of this message to the sender and delete the message, any attachments, and any copies thereof from your system. Thank you. Guardian Mortgage Documents, Inc. 225 Union Boulevard, Suite 200 Lakewood, CO 80228. ********************************************************************** This email may contain information protected under the Family Educational Rights and Privacy Act (FERPA) or the Health Insurance Portability and Accountability Act (HIPAA). If this email contains confidential and/or privileged health or student information and you are not entitled to access such information under FERPA or HIPAA, federal regulations require that you destroy this email without reviewing it and you may not forward it to anyone. |
_______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
