I am trying to figure out how to get "host pair" data out of ntop, or if it
is even possible. I want to know what hosts (b, c, d, e) have had a
conversation with the host ntop is running on (a), and how much data has
been exchanged between them. I would also like to drill down to learn how
that data is broken down by protocol. Is this possible? Basically, I need
to answer the questions "Who communicated the most with host a, how much
data flowed, and what kind of data was it"
10.0.0.1 (host a)
Peers:
10.0.0.2
10.0.0.3
10.0.0.4
Data volume by protocol:
10.0.0.1 --> 10.0.0.2
http 100MB
dns 20MB
smtp 50MB
netbios-dgm 34MB
Thanks for any direction you can provide!
Phil
_______________________________________________
Ntop mailing list
[email protected]
http://listgateway.unipi.it/mailman/listinfo/ntop
