Re: [Ntop] ntopng won't start

make sure no other process is bound to ports 3000 or 3001. simone On Tue, Oct 27, 2015 at 5:48 PM, wrote: > Thanks ill have a read at that. > > I have used the./ntopng start command successfully in the past. I tried > just running ntopng there and this was the outcome > > ntopng > 27/Oct/201

Re: [Ntop] ntopng won't start

CC ] STREAM LISTENING 11939 1850/master > private/virtual* > *unix 2 [ ACC ] STREAM LISTENING 11943 1850/master > private/lmtp* > *unix 2 [ ACC ] STREAM LISTENING 11947 1850/master > private/anvil* > *unix 2 [ ACC ]

Re: [Ntop] Net flow traffic from an ASA firewall 8.25 using ntopng

Karar, I am not an expert in Cisco ASA. Could you please give more information on the issue you are experiencing? The fact that your are correctly seeing ports does not imply that the traffic protocol is recognized. We have the nDPI technology to detect L7 protocols. Maybe nDPI is not able to det

Re: [Ntop] Local Networks and Disk Space

Colin, Maximum allowed number of networks is 255 (see https://github.com/ntop/ntopng/blob/dev/include/ntop_defines.h#L239). Please keep in mind that if you define overlapping/nested networks, longest match principle applies. Cheers, Simone On Wed, Nov 11, 2015 at 3:07 PM, wrote: > At the mom

Re: [Ntop] ntopng Traffic Profiles - How to use?

hello kevin, sorry for the late reply. We were working on the manual. Please have a look at the latest user guide: https://github.com/ntop/ntopng/blob/dev/doc/UserGuide.pdf It describes how to use profiles simone On Sun, Nov 8, 2015 at 9:30 AM, kevin mills wrote: > Hi, > can anyone tell me wha

Re: [Ntop] ntopng 100% packet loss

Chris, thanks for contacting us. I would suggest to follow up using the issue tracker here https://github.com/ntop/ntopng/issues/266 thanks simone On Mon, Nov 23, 2015 at 7:08 PM, Bidwell, Christopher wrote: > Hi all, > > I've submitted this as a bug but I'm not so sure it's a bug as it may be

Re: [Ntop] Only showing sent traffic, no receive, while older versions work.

Rasmus, could you please go to 'host->networks' and see historical statistics for local networks? Do you see 'egress' only? or is there some ingress/inner traffic as well? Please, also attach ntopng startup string or config file. simone On Mon, Nov 23, 2015 at 11:22 AM, rasmus wrote: > Hi All

Re: [Ntop] ntopng 100% packet loss

bled sticky hosts as well, restarted ntop and it worked for about 15 > seconds and then packet loss starts to build up again. Hmmm...This used to > work with an older version of ntop. I upgraded and am experiencing these > issues. > > I'm stumped. > > On Mon, Nov 23, 2015

Re: [Ntop] Fwd: ntopng Traffic Profiles - How to use?

let me enter "host myservername" or "ip and not > net localnet" > This is version 2.1.151013 > > regards, > Louis > > > -- Forwarded message -- > From: Simone Mainardi > Date: 23 November 2015 at 17:42 > Subject: Re: [Nt

Re: [Ntop] bnx2 pf_ring ZC driver request

nick, for a list of PF_RING ZC supported NICs please refer to the table at the bottom of this page: http://www.ntop.org/products/packet-capture/pf_ring/pf_ring-zc-zero-copy/ simone On Thu, Nov 26, 2015 at 12:10 AM, Nick Green wrote: > > Hi List, > > Would anyone be able to steer me towards the

Re: [Ntop] bnx2 pf_ring ZC driver request

; I did find some reference to drivers … so was hoping to find something > more up to date - http://marc.info/?l=ntop-dev&m=138004602723991&w=2 > But if they are no longer supported then I have no choice … > > /nick > > > From: on behalf of Simone Mainardi < > maina..

Re: [Ntop] Other users cannot login

Warren, Thanks for reporting. Your issue is under investigation. Could you please report it at https://github.com/ntop/ntopng/issues thank you, simone > On Nov 30, 2015, at 5:45 AM, Warren Daly (OPUS) wrote: > > ntopng Professional v.2.0.151129 > Ubunt

Re: [Ntop] Slow speed for inline installation

Hi aneip, you may have to use PF_RING zero copy (ZC) in an high-speed bridged configuration like yours. See http://www.ntop.org/products/packet-capture/pf_ring/pf_ring-zc-zero-copy/ simone > On Nov 4, 2015, at 3:24 A

Re: [Ntop] VLANs

Hi Dave, VLAN support has been improved in 2.2 but, however, there are still some features that need to be implemented. Have you ever thought to share your code? It would be nice to contribute it to the community. You will be credited for that. On our side, we may try and see if we can merge it in

Re: [Ntop] ntopng users and complex passwords

Chris, Character hygienization may bee too strict. We already have an open issue: https://github.com/ntop/ntopng/issues/232 We will definitely allow the use of more complex passwords but it is not high priority. Simone On Fri, Dec 4, 2015 at 6:17 PM, Bidwell, Christopher wrote: > Hi, > > ntop

Re: [Ntop] Building ntopng on FreeBSD 10.1

Hi Joe, Did you install all the required dependencies (autoconf automake libtool wget pkgconf rrdtool gmake redis git bash mysql-connector-c) ? If it still fails, try to: - compile with bsd 'make' - use the ZMQ library shipped with ntopng sources Simone On Fri, Dec 4, 2015 at 3:20 PM, Joe Riz

Re: [Ntop] Use ntopng visualizations in other dashboards

Hi, There are some internal APIs that return standard json. We use them to feed charts and tables with plain data. However, we didn't plan to make them available to the public so there is no user documentation, just comments in the source code. If you want to inspect the sources, you should look a

Re: [Ntop] pushing to elasticSearch

Hi, please see below inserted comments simone On Thu, Dec 10, 2015 at 7:31 PM, Munroe Sollog wrote: > I'm pushing netflow into elasticSearch and it looks like there is a block > of fields that come in as > json_N. I've included a sample document from kibana. Two questions: > > 1) Is there a w

Re: [Ntop] Building ntopng on FreeBSD 10.1

:msg_t*)': > /root/build/ntopng/third-party/zeromq-4.1.3/src/curve_client.cpp:340: > undefined reference to `randombytes' > /root/build/ntopng/third-party/zeromq-4.1.3/src/curve_client.cpp:344: > undefined reference to `crypto_box' > /root/build/ntopng/third-party/zerom

Re: [Ntop] unable to see netflow

Warren, If you specify none as value for -n, no flow will be export -- in this case the -P parameter is mandatory. Please see nprobe --help On Fri, Dec 11, 2015 at 8:45 AM, Warren Daly (OPUS) wrote: > Hi, > I start nprobe (v.7.2.151204) like this > nprobe --zmq tcp://*:5556 -i none -n none --c

Re: [Ntop] Running ntopng in IPv4

Fabrício, We are aware that, on some systems having IPv6 enabled, ntopng starts in IPv6 regardless of the options specified. We are working on this. Please, consider using github for future issues: https://github.com/ntop/ntopng/issues/ simone > On

Re: [Ntop] unable to see netflow

Hi, please follow up here: https://github.com/ntop/ntopng/issues/327 On Mon, Dec 21, 2015 at 8:02 AM, Luca Deri wrote: > Wine > it looks good to me. In ZMQ the probe is a source not an exporter as in > netflow. > > If you have concerns, please file a bug on github and we’ll follow up > > Cheers

Re: [Ntop] ntopng from git fails to configure

Bruce, Thanks for reporting. We are aware there are some minor issues when compiling on centos from source. We are working on them. You know, changing the configure scripts is critical since it may break our automatic build and packaging system. For this reason, we have strict policies and need ne

Re: [Ntop] Help with MySQL on Windows NTOPng

Hi, Minimum requirements are the MySQL server and MySQL connectors. You may want to install the workbench if you plan to operate directly onto the database (e.g., data dump, replication, etc) but this is not required by ntopng. Python, VS, documentation and examples are not required as well. Sim

Re: [Ntop] ntopng from git fails to configure

r you? If you please send me your config.log to see what happens in > your system > > Thanks Luca > > On 29 Dec 2015, at 05:11, Bruce Ferrell wrote: > > On 12/28/2015 12:43 AM, Simone Mainardi wrote: > > Bruce, > > Thanks for reporting. We are aware there are some mi

Re: [Ntop] old rpm packages for ntop

Ionuț, we are working to solve the issue related to the missing so in version 6.2. We'll notify you as soon as we've fixed it. simone On Mon, Jan 11, 2016 at 4:03 AM, Ionuț Bîru wrote: > Hello guys, > > I'm trying to find pfring.x86_64 6.0.3-218 around that can be installed > manually. > It se

Re: [Ntop] No local network populated

Hi, please post ntopng version and distro simone On Tue, Jan 12, 2016 at 11:11 PM, aneip wrote: > > I just upgrade ntop to latest beta version. But when I try to filter host > in page Hosts -> Hosts to Local Network no data found. > > In Hosts -> Network I can see the total number of hosts. > >

Re: [Ntop] How to AUTH on redis server

Hi, please see below On Thu, Dec 24, 2015 at 11:36 AM, Varda Zklir wrote: > Hello Gentlemen. > > I'm trying to secure ntopng - redis interconnection with optrions in redis > configuration: > > requirepass > > > port 0 > unixsocket /path/to/redis.socket > > How can I specify secret key in ntopng

Re: [Ntop] Dropped packet count logged in ntopng?

Hi Thomas, you should look into the interface statistics page that is accessible by clicking on the interface name in the dropdown ntopng menu. simone On Mon, Jan 25, 2016 at 6:34 AM, Thomas Leathley wrote: > I’m running the latest nightly build on ntopng on two machines - a quad > core Atom an

Re: [Ntop] Hosts analysis

Hi Warren, we are working on an historical data explorer for flows: here's a preview https://www.dropbox.com/s/5ksguzw4798klyz/data-explorer.mov simone On Mon, Jan 25, 2016 at 11:48 AM, Warren Daly (OPUS) wrote: > Hi, > I have been given the task of investigating what a host was doing between

Re: [Ntop] bandwidth usage [per host] over time

Brian, if you go to the interface stats page you can see bandwidth usage over time. In addition, if you hover the chart with the mouse, you will see minute top-talkers on the right. You can chart per protocol-statistics as well. Also note that we are improving the drilling down of this kind of in

Re: [Ntop] Enabled SQL history but not saving flows?

Please, find method getInterfaceTopFlows in file scripts/lua/modules/db_utils.lua and change the line if(db_debug == true) then io.write(sql.."\n") end to if(1) then io.write(sql.."\n") end Then, look at ntopng console output, you'll see an SQL query. Put that query directly into MySQL and see

Re: [Ntop] Historical option in Ntop NG V 2.0

Hi Nikhil, Latest stable version is 2.2, please consider using it (see http://packages.ntop.org/centos-stable/7/x86_64/Packages/ and http://packages.ntop.org/centos-stable/) -F switch enables flow export to either elastichsearch or MySQL. From the docs: [--dump-flows|-F] | Dump expir

Re: [Ntop] Reset stats

Daniel, If you want to clean historical stats that ntopng has recorded, you have to delete files under /var/tmp/ntopng. If you want to clean configurations, profiles, alerts, users and passwords, etc you may want to purge the redis database (redis-cli and then flushdb flushall). *Be careful*, pur

Re: [Ntop] bandwidth usage [per host] over time

Brian, please see below On Sat, Feb 6, 2016 at 5:33 PM, Brian J. Murrell wrote: > On Fri, 2016-02-05 at 15:49 +0100, Simone Mainardi wrote: > > Brian, > > > > if you go to the interface stats page you can see bandwidth usage > > over > > time. > > Hrm. It

Re: [Ntop] ntop on raspberry pi 2 on a mirror port?

Hi Dan, The setup you have indicated is OK and straightforward. However, I am not sure you can handle 130Mbps w/ nDPI using rp2: it has a 900 Mhz cortex... Simone On Wed, Feb 24, 2016 at 5:47 PM, dan wrote: > I'm interested in ntop and I want to try it with some light weight > hardware... > >

Re: [Ntop] ntop on raspberry pi 2 on a mirror port?

lebone. > On Feb 24, 2016 3:46 PM, "Simone Mainardi" wrote: > >> Hi Dan, >> >> The setup you have indicated is OK and straightforward. However, I am not >> sure you can handle 130Mbps w/ nDPI using rp2: it has a 900 Mhz cortex... >> >> >&

Re: [Ntop] Historcial Data from MySQL

Robert, Presently, ntopng is not able to read MySQL flows that have been dumped by nProbe. Hence, the latest solution proposed is not doable now. Could you please post nprobe and ntopng configurations so we can try and reproduce your issue. If I understand correctly: you can see dumped flows in t

Re: [Ntop] flush a hosts data

Hi Steve, sorry for the late reply. Unfortunately the present implementation does not allow host data flush for active hosts. Please, make a feature request on github if you feel this is a relevant feature that we should implement. Simone On Fri, Feb 26, 2016 at 9:18 PM, Steve Clark wrote: > Hi

Re: [Ntop] ntopng & redis memory usage

Gerhard, The error comes from Redis when it runs out of memory. Try and disable host persistency in the redis cache. Use ntopng option -P Simone On Fri, Feb 26, 2016 at 9:30 PM, Gerhard Mourani wrote: > Hello list, > > Ntopng heavily uses redis to save temporary data about host network > traff

Re: [Ntop] Questions about filtering traffic

Vivien, Historical sent/received traffic breakdown is available both on a per-network- and per-local-host-basis. Networks and hosts are available from the dropdown menu. Simone On Mon, Feb 29, 2016 at 11:34 AM, Vivien GAUTIER wrote: > Hello everyone, > > I have installed ntopng, and I'm lookin

Re: [Ntop] flush a hosts data

o. If the host is not active, you may want to try and delete the redis key .json so ntopng will re-initialize counters at zero as soon as it will see the host again. Anyway this is a non-standard procedure so do it at your own risk. Simone > > Thanks again, > Steve > > On 03/03/

Re: [Ntop] Historcial Data from MySQL

ot quite sure however if > this is the way it is supposed to work. For instance do I need a > separate 'nprobe' process on Server B? > > > Cheers > > Robert > > On 02.03.2016 09:47, Simone Mainardi wrote: > > Robert, > > > > Presently, ntopng

Re: [Ntop] Return packet not being caught by ntopng

Ajit, are you calling the http "host_get_json.lua" endpoint directly? Could you please post the full http request you make? simone On Mon, Mar 7, 2016 at 3:51 AM, Ajit Sarnaik wrote: > Hello Folks, > > Just starting using ntop. We would like to capture network statistics for > bidirectional tra

Re: [Ntop] Return packet not being caught by ntopng

t; Here is the request, > > "http://localhost:6398/lua/host_get_json.lua?ifnum=4&host=172.25.3.130"; > > We do get the Tx stats, but Rx (response from server) is 0. > > Regards, > > Ajit > > On Mon, Mar 7, 2016 at 7:05 AM, Simone Mainardi wrote: > &

Re: [Ntop] Return packet not being caught by ntopng

#x27;stats': {}}}, >>> u'mac_address': u'02:C4:92:CA:3F:FD', >>> u'throughput_bps': 0.0, >>> u'throughput_pps': 0.0, >>> u'other_ip_rcvd': {u'bytes': 0, u'packets': 0}, >>>

Re: [Ntop] Historcial Data from MySQL

* MySQL database. This time format will be 100% compatible. Each ntopng will write its own instance name in a mysql column. For redundancy and HA you may think to a master-slave DB configuration, cloud, use mysql fabric, etc. simone > (Maybe this discussion should be on a separate th

Re: [Ntop] Return packet not being caught by ntopng

>>>>> u'upTo1518': 73338, >>>>> u'upTo512': 1346, >>>>> u'upTo256': 6695, >>>>> u'upTo9000': 65 >>>>> }, >>>>> u'dns': {u

Re: [Ntop] Historcial Data from MySQL

t; For the other question I will write a separate mail, since I feel it > doesn't belong here any more. > > > Cheers > Robert > > On 08.03.2016 13:19, Simone Mainardi wrote: > > Hi Robert, see below > > > > On Tue, Mar 8, 2016 at 9:43 AM, Finze, Robert <

Re: [Ntop] [SPAM] Re: nTOP / nTOPng - Per host tracking of IPs / URLs connected to

Hi, flow search and drill-down features are only available in the Pro version. Indeed, there's an historical data explorer as well as aggregation tools. See these: http://www.ntop.org/ntopng/exploring-historical-data-using-ntopng/ http://www.ntop.org/ntopng/exploring-historical-data-using-ntopng-p

Re: [Ntop] Redundancy Setup

Robert, If both the probe- and the collector-ntopng write to the same DB, then you'll end up having duplicated flows. Since the main goal you have is redundancy, I would go for the following setup: - Probe A: local ntopng + zmq to collector + local nprobe (optional) + flow dump to MySQL_schema_A

Re: [Ntop] Problems installing nprobe/ntopng on Raspbian

try with sudo apt-get install libhiredis0.10 libhiredis-dev Simone On Thu, Mar 10, 2016 at 9:13 PM, Roger wrote: > Hi List > > I have successfully run ntopng/nprobe on a Windows PC with NetFlow from an > ASUS RT-N66U running DD-WRT software. I thought I would follow the simple > instructions

Re: [Ntop] ntop w/MySQL - High CPU wait % and disk writes, slow webui

The traffic charts enclosed show peaks at around .5 Gbps. I don't know how many flows you are generating but I think they are too much for a single ntopng and a single MySQL instance. MySQL tuning helps but not to the necessary extent. Also, we (as ntopng devs) may improve performances for example

Re: [Ntop] 500k+ Flows

Alan, it is worth trying to optimize the following things: 1. you can try and disable redis host persistency with -P. 2. You can also limit the maximum number of flows and hosts handled with -X and -x respectively. 3. Additionally, have a look at sticky hosts. If you are getting errors, then pl

Re: [Ntop] Return packet not being caught by ntopng

obe, will nProbe with ntopng be > enough or I need to have other components, such as n2disk, nbox, npfring > ntopng-data as well please. We mysql for other purposes, can we use that > instead redis please. > > Regards, > > Ajit > > On Tue, Mar 8, 2016 at 4:23 AM, Simone Mainard

Re: [Ntop] Successive IP addresses

Mathieu, there are at least two ways you can accomplish this: 1. make local hosts sticky and then navigate to page hosts_stats.lua?mac=DE:AD:BE:EF:BE:EF, where DE:AD:BE:EF:BE:EF is the MAC address of interest. Since local hosts will not be purged, you will find here the whole list of IP addresses

Re: [Ntop] Alert on flow duration

James, could you please file a fetaure request on github. It's easier for us to track requests and developments there. Thank you. Simone On Sat, Mar 19, 2016 at 3:19 PM, James Lay wrote: > Hey all, > > Topic pretty much says it...I'm wondering if there's a way to alert on if > a flow last longe

Re: [Ntop] Return packet not being caught by ntopng

d please. > > Thanks for our help. > > Regards, > > Ajit > > On Mon, Mar 7, 2016 at 7:55 AM, Simone Mainardi wrote: > >> ifnum is not recognized as valid param. Since it's unknown, I guess >> ntopng is replying with host statistics related to the curre

Re: [Ntop] Successive IP addresses

don't know if it is possible with the actual host data structure but > please let me know if it is possible. > > Thanks in advance, > Mathieu > > > 2016-03-16 18:05 GMT+01:00 Simone Mainardi : > >> Mathieu, there are at least two ways you can accomplish this: >>

Re: [Ntop] Successive IP addresses

to save host information (via redis or > mysql) and load it automatically when starting ntopng ? > > Best reguards, > Mathieu > > 2016-03-22 9:59 GMT+01:00 Simone Mainardi : > >> Mathieu, >> >> Please, feel free to contribute the additional page on github, we w

Re: [Ntop] Successive IP addresses

_seen" value also. > > Thank you very much for your answers I really appreciate it. > Mathieu > > 2016-03-23 10:23 GMT+01:00 Simone Mainardi : > >> Mathieu, redis host persistency is enabled by default for local and >> system hosts. They are dumped on exit and loaded

Re: [Ntop] Ntop Digest, Vol 142, Issue 39

7 AM wrote: > >> Send Ntop mailing list submissions to >> ntop@listgateway.unipi.it >> >> To subscribe or unsubscribe via the World Wide Web, visit >> http://listgateway.unipi.it/mailman/listinfo/ntop >> or, via email, send a message with subject or

Re: [Ntop] Ntop Digest, Vol 142, Issue 41

.it > > To subscribe or unsubscribe via the World Wide Web, visit > http://listgateway.unipi.it/mailman/listinfo/ntop > or, via email, send a message with subject or body 'help' to > ntop-requ...@listgateway.unipi.it > > You can reach the person managing the list at &

Re: [Ntop] Ntopng and ddwrt

Hi, if rflow is interoperable with netflow, then you can 1) use nProbe as a collector for rflow data and; 2) send data to ntopng via ZMQ http://www.ntop.org/ntopng/creating-a-hierarchical-cluster-of-ntopng-instances/ On Mon, Mar 28, 2016 at 7:03 PM, Ken Mandelberg wrote: > I would like to get

Re: [Ntop] Ntop Digest, Vol 142, Issue 47

h the person managing the list at > ntop-ow...@listgateway.unipi.it > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Ntop digest..." > > > Today's To

Re: [Ntop] Ntop Digest, Vol 142, Issue 52

gt; > You can reach the person managing the list at > ntop-ow...@listgateway.unipi.it > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Ntop digest..." > > > Today's Topics: > > 1. Re: Ntop Digest, Vol 142

Re: [Ntop] bucket search is too slow

Robert, try and increase the hash size: [--hash-size|-w] | Flows hash size [default=131072] Simone On Thu, Apr 7, 2016 at 6:42 PM, Finze, Robert wrote: > Hi, > > today I've plugged my nprobe installation into some live traffic and got > my first performance warning: > > WARNING: Your

Re: [Ntop] Binary package signing

Thomas, gpg --keyserver keyserver.ubuntu.com --recv-keys 6F13614FD1EB60BE Simone On Sun, May 1, 2016 at 5:18 AM, Thomas Leathley wrote: > On Ubuntu 14.04 with a licensed copy of Ntopng running, I’m unable to > apt-get update Ntop. Using your suggestion from root: > > root@ntopvm:~# gpg -a

Re: [Ntop] Binary package signing

pt/14.04/x64/InRelease > > > W: Failed to fetch http://packages.ntop.org/apt/14.04/all/InRelease > > > W: Some index files failed to download. They have been ignored, or old > ones used instead. > > root@ntopvm:~# > > I don’t think we’re quite there yet. > > O

Re: [Ntop] ntopng - Capturing the Same flows from multiple devices

Calvin, see below, Simone On Wed, May 4, 2016 at 11:43 AM, Calvin Chiang wrote: > Hi All > > > > How does ntopng handle it it work when you configure netflow on multiple > devices? > > Specifically when flows will go through both devices? > > Is there some kind of deduplication that works here

Re: [Ntop] Any users here of the brew ntopng package - issue with "Page "/lua/login.lua" was not found"?

Hi, I've just tested with brew and El Capitan. Everything works OK. After a brew install, ntopng works out-of-the-box and uses the right directories under usr/local/Cellar See the output: Simones-MacBook-Pro:tmp simone$ /usr/local/Cellar/ntopng/2.2_1/bin/ntopng [...] 10/May/2016 10:23:59 [HTTP

Re: [Ntop] ntopng behind a proxy

Hi, Please remove the trailing slash from the --http-prefix and it will work: ~/code/ntopng$ sudo ./ntopng -Z /ntopng [image: Inline image 1] Simone On Mon, May 9, 2016 at 8:24 PM, Gerhard Mourani wrote: > Hello list, > > I’m using ntopng 2.2 and this is what the man page said about pro

Re: [Ntop] ntopng behind a proxy

search box which doesn’t seem to use the > proxy. > > Gerhard, > > On May 10, 2016, at 6:20 AM, Simone Mainardi wrote: > > Hi, > > Please remove the trailing slash from the --http-prefix and it will work: > > ~/code/ntopng$ sudo ./ntopng -Z /ntopng > >

Re: [Ntop] question: What license do I need for Layer-7 Traffic Policies ?

Hi Peter, the Pro version is what you need for to L-7 filtering. I also encourage you to use PF_RING as I am not sure the standard packet capture libraries will make it. Simone On Mon, May 16, 2016 at 1:05 AM, Peter Ruta wrote: > Hello, > > What ntopng license do I need to purchase for inline

Re: [Ntop] Historical Data Update please?

Hello Warren, The new stable -- which includes the changes you mentioned -- will be released before the summer. Say tuned. Simone On Wed, May 18, 2016 at 7:13 AM, Warren Daly (OPUS) wrote: > Hi > We're running Ubuntu 14.04.04LTS > ntopng Professional v.2.2.160414 > > Setup mysql logging using

Re: [Ntop] Help with license.

Hi, Yes, basically any tool has the check license / check maintenance option. Look at the help. Alternatively you can see the status of licenses graphically using the nBox software. Simone On Thursday, 19 May 2016, Amit Agarwal wrote: > Hi, > > I am new here and need a help with licencse for

Re: [Ntop] Successive IP addresses

topng/blob/dev/doc/UserGuide.pdf > > Thanks you in advance, > > Mathieu > > 2016-03-23 14:34 GMT+01:00 Simone Mainardi : > >> Mathieu, >> >> I think that for your purposes you should look and edit the Host >> functions: >> >> - ser

Re: [Ntop] Help with license.

On Thu, May 19, 2016 at 1:34 PM, Amit Agarwal wrote: > On 2016-05-19 15:33, Simone Mainardi wrote: > >> Hi, >> >> Yes, basically any tool has the check license / >> check maintenance option. Look at the help. >> > I was trying with examples in p

Re: [Ntop] Failed dependency ntopng and pfring

Pepe, the issue with the builds has been fixed. Please update and try again. Simone On Thursday, 19 May 2016, Pepe Charli wrote: > Hi, > > CentOS release 6.7 > > When I try to install the latest version of ntopng gives me this error: > > --> Finished Dependency Resolution > Error: Package: nto

Re: [Ntop] High cpu usage

Patrick, Does the high cpu consumption occur when using the ntopng web UI? Or it does not matter? Which router are you using? On Mon, May 30, 2016 at 12:45 PM, Patrick DERWAEL wrote: > Hi all > > Just installed ntop on a router running on centos 7 in à small home lan > Ntop is taking permanentl

Re: [Ntop] High cpu usage

Hi Simone, > > The high cpu is permanent, no matter of thé web interface usage > Ntop runs on a Tor router on centos 7 > > Patrick DERWAEL > Rue de la Fontaine, 3 > 4210 Burdinne > 0479/80.50.79 > Le 31 mai 2016 11:44, "Simone Mainardi" a écrit : > >> P

Re: [Ntop] Search historical data / central management

Hello Joseph, see below inserted replies On Wed, Jun 1, 2016 at 7:09 PM, Joseph Ost wrote: > Hi, > > > > I recently installed ntopng 2.3 on debian wheezy following this > > article, the install was su

Re: [Ntop] How deploy ntopng in lan enviroment

Hello Massimiliano, There is no 'default' positioning scheme. It depends on the network topology and device features. However, you should try and place ntopng in a strategic location where it can sees most traffic. Here are some options: - If you have a way to 'collect' switches traffic to a centr

Re: [Ntop] ntop/nprobe not processing flows from arista switch

Hi, According to the information shown, it may be that ntopng is not able to fetch monitored flows from the nProbe. I would try to bind the nProbe to any address (--zmq tcp://*:5557) and see if ntopng can see the traffic. Simone On Mon, Jun 13, 2016 at 1:03 PM, Enrico Kern wrote: > Hi, > > i

Re: [Ntop] JSON Data Export from ntop

Hi Richard, JSON is just a standard way to output data. Many modern tools such as Solr, Kafka, ElasticSearch, MongoDB, etc. are designed to smoothly ingest JSON-formatted data. So if you plan to use one of the mentioned software -- or, more in general, tools you may find in a big data ecosystem --

Re: [Ntop] Cisco ASR & sampling nprobe

Sébastien, Please have a look at nprobe option: [--collector-sample-rate] | Specify the bytes/pkts collection sample rate. Simone On Tue, Jun 21, 2016 at 12:23 PM, DAVID Sébastien wrote: > Hi , > > > > Currently I have a nprobe running but I did not get the right amount of > bandwith. > > >

Re: [Ntop] What ntopng files needs to be persisted for statistics?

Hi Steinar, everything you find under /var/tmp/ntopng has to be persisted to ensure proper functionality. Simone On Tue, Jun 21, 2016 at 4:53 PM, Steinar Bang wrote: > Hi, > > I'm planning to put /var/tmp/ntopng into tmpfs. > > I'm wondering what files under /var/tmp/ntopng that needs to be > p

Re: [Ntop] What ntopng files needs to be persisted for statistics?

Hi, see below, On Tue, Jun 21, 2016 at 7:32 PM, Steinar Bang wrote: > >>>>> Simone Mainardi : > > > Hi Steinar, everything you find under /var/tmp/ntopng has to be persisted > > to ensure proper functionality. > > Ok, thanks for the information! > >

Re: [Ntop] Possible bug in the Hosts by Operating System view

This has already been fixed. Please upgrade ntopng to the latest dev version. On Tue, Jun 21, 2016 at 9:16 PM, Richard Troiano wrote: > HI, > > I noticed something that might be a bug in ntopng and wanted to check to > see if anyone else is experiencing the same issue. > > When I go to the Hosts

Re: [Ntop] ntopng updated and is now Pro Small Business Edition????

Richard, packaged ntopng versions comes with 10 free minutes of the small business version. It's just to allow people to try it. You don't have to worry about that. After 10 minutes ntopng will switch to the free version. By the way, the free version is also known as community. And actually it woul

Re: [Ntop] Ntop Digest, Vol 145, Issue 16

ail, send a message with subject or body 'help' to > ntop-requ...@listgateway.unipi.it > > You can reach the person managing the list at > ntop-ow...@listgateway.unipi.it > > When replying, please edit your Subject line so it is more specific > than "Re: Contents

Re: [Ntop] ntopng -> elasticsearch - dropped flows

Hi, Could you please share ntopng configuration used? I think your setup doesn't allow ntopng to be quick enough. Remember that there is one thread per monitored interface and that thread has to 1. capture packets / receive flows 2. handle them 3. export to ES Simone On Wed, Jun 29, 2016 at 12:

Re: [Ntop] HTTP 500 Error after login screen

Richard, we are unable to reproduce the issue. Can you confirm you are still experiencing it using the latest dev version? On Mon, Jun 27, 2016 at 9:10 PM, Richard Troiano wrote: > >I went to access my ntop installation today and got the following >error: > > >HTTP/1.1 500 Internal s

Re: [Ntop] Increasing Historical Reporting Length

New settings only affect newly created statistics. So for old statistics, that is, for hosts that you have already seen, the only way to increase the data retention period is to wipe the ntopng data folder (usually /var/tmp/ntopng). Please, keep in mind that this wipes out all the history. Simone

Re: [Ntop] ntopng -> elasticsearch - dropped flows

. > > However, what seems puzzling, is that none of the metrics of the machine > indicate the machine is over-taxed. > > Thanks again! > > > >> -- >> >> Message: 2 >> Date: Tue, 5 Jul 2016 10:25:03

Re: [Ntop] ntopng and IP addresses leases

Mathieu, You already asked a similar question some time ago in the same mailing list. The behaviors you described are consistent with the present implementation. If you would like to handle dynamic IP-MAC associations, then please feel free to post a feature request on github and we'll try and acc

Re: [Ntop] ntopng and IP addresses leases

ute for sure. I have modified and added some features and I > would gladly share them if it can be useful. Github is a best place for > such things. > > 2016-07-13 10:28 GMT+02:00 Simone Mainardi : > >> Mathieu, >> >> You already asked a similar question some ti

Re: [Ntop] I just want a ntopng Small Biz Pro licence

Please, check again and let us know. Simone On Wed, Jul 13, 2016 at 6:25 PM, Jari Fredriksson wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > > Hello all. > > I'm a long time user of ntop, but been w/o for the last year. > > Now I wanted again to have it, and saw that ntop is now n

Re: [Ntop] Confusion on if nProbe is required

Hi, please see below On Wed, Jul 20, 2016 at 7:05 AM, wrote: > Hi All, > > We would like to use ntopng installed on a windows laptop connected to a > mirror port on a network switch to monitor and report on network traffic to > determine issues across the network. > > Using ntopng connected to a

Re: [Ntop] LDAP Auth debugging

Hi Munroe, We are aware there is no error propagation that may help diagnosing LDAP issues. Please, file a github request and we'll try to accomodate it. Simone On Tue, Jul 19, 2016 at 9:52 PM, Munroe Sollog wrote: > I have configured my ntop instance (2.4.160719-1448) to connect to our > lda

  1   2   3   4   >