OK I will do that
Here is what I in the log Tue Mar 31 14:59:24 2009 THREADMGMT[t1165392192]: NETFLOW: (port 2055) thread running [p23602] Tue Mar 31 14:59:24 2009 THREADMGMT[t1096673600]: SFP: Fingerprint scan thread running [p23602] Tue Mar 31 14:59:24 2009 THREADMGMT[t1112942912]: SIH: Idle host scan thread running [p23602] Tue Mar 31 14:59:24 2009 THREADMGMT[t1186371904]: NPS(1): Started thread for network packet sniffing [eth0] Should I delete and try to restart? Terry Martin TimeData Corporation VP of Network Operation East Coast Number: 212-644-1600 X3 West Coast Number 503-678-2224 Cell: 503-318-8909 ________________________________ From: [email protected] [mailto:[email protected]] On Behalf Of Gary Gatten Sent: Tuesday, March 31, 2009 6:21 PM To: [email protected] Subject: Re: [Ntop] Collecting packets Yes - 2055 must be listening. Check the log for errors if it won't start ________________________________ From: [email protected] To: [email protected] Sent: Tue Mar 31 20:09:04 2009 Subject: Re: [Ntop] Collecting packets NO I don't see anything listening on port 2055 in a Netstat -a. Should that have started when I setup the plugin? Terry Martin TimeData Corporation VP of Network Operation East Coast Number: 212-644-1600 X3 West Coast Number 503-678-2224 Cell: 503-318-8909 ________________________________ From: [email protected] [mailto:[email protected]] On Behalf Of Gary Gatten Sent: Tuesday, March 31, 2009 5:59 PM To: [email protected] Subject: Re: [Ntop] Collecting packets Also, does netstat -a show something listening on 2055? Sometimes the plugin will trick you and make you think its active when its not ________________________________ From: [email protected] To: [email protected] Sent: Tue Mar 31 19:44:03 2009 Subject: [Ntop] Collecting packets To all I have set up an NTOP probe to collect traffic from a Cisco 7206. I setup the plugin for Netflow on 2055 and when I look at the statistics on the "Summary traffic " on eth0 I see the IOP traffic being registered on port 2055 and it is one of the highest used ports on the list. But when I change the port I am watching from eth0 to the netflow port nothing is collected. But I can see the packets come in on the NTOP collector using Wireshark (see attached snipit). I am not sure why this is not working. Anyone have any suggestions? I must be missing something simple Thanks in advance Terry Martin TimeData Corporation VP of Network Operation East Coast Number: 212-644-1600 X3 West Coast Number 503-678-2224 Cell: 503-318-8909 "This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system." "This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system."
_______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
