ntopmg is a network probe that shows network usage in a way similar to what top does for processes. It acts as a Web server, creating an HTML dump of the network status. It sports a flow collector, an HTTP-based client interface for creating ntop-centric monitoring applications, and RRD for persistently storing traffic statistics. Its C++ core can be scripted in Lua, for changing the appearance and extending functionality.
| Tags | Networking Monitoring |
|---|---|
| Licenses | GPL |
| Operating Systems | Windows POSIX Linux |


Release Notes: An enhanced Web GUI with new menus and extension of previous sections. Performance improvements both in nDPI and the ntopng engine. Several enhancements to the flow collection interface. The ability to save flows (both collected and computed from packets) in SQLite format (-F). Data aggregations (-A) for clustering information based on homogeneous information. Implements passive OS detection via nDPI. Adds compatibility with embedded platforms such as RaspberryPi and BeagleBoard. Adds an activity map for having at 1-second visibility of hosts activities.


Release Notes: ntop was completely rewritten from scratch and renamed as ntopng. The engine is now coded in C++ with HTML pages dynamically generated in Lua. This release supports DPI (Deep Packet Inspection), HTTP site characterisation, and flow collection. This new engine should be robust, and memory savvy and suitable for embedding into environments with limited resources. The Web interface is based on HTML5 and Ajax for a modern look-and-feel as well smooth user experience.


Release Notes: This is a maintenance release. Legacy code and protocols were removed. Support was added for modern "protocols" such as Facebook and Twitter. Memory usage was reduced. Application stability was increased.


Release Notes: A partially rewritten ntop processing engine to address reliability and performance. Several bugs and stability issues have been fixed. Better support for IPFIX and NetFlow v9, as well as ntop PEN (Private Enterprise Number). Support for Cisco ASA firewalls. ntop engine scriptability via the Python programming language. An RRDalarm plugin for generating alerts based on thresholds. Improved Google maps integration. Enhanced sFlow support. Iphone support. Documentation improvements.


Release Notes: A new rrdAlarm function. Improved Python support. Bugfixes.
02 May 2010 06:44
this program is good but still i don't know how he is work
20 Feb 2009 09:19
Installation problems
I am a newbie and am trying to install ntop3.3.9 as per instructions on ntop.org but it's failing on ./autogen.sh. The whole output is as follows;
[root@jazzman-server ntop]# uname -a
Linux cam-sl-linux-server 2.6.18-53.1.4.el5 #1 SMP Wed Nov 14 10:37:33 EST 2007 i686 i686 i386 GNU/Linux
[root@jazzman-server ntop]# ls
acinclude.m4 configure globals-core.h leaks.h ntop_darwin.h reportUtils.c
acinclude.m4.in configureextra globals-defines.h libtool ntop.h scsiUtils.h
acinclude.m4.ntop configure.in globals-report.c libtool.m4.in ntop.html sessions.c
aclocal.m4 CONTENTS globals-report.h ltmain.sh ntop.txt specialMAC.txt.gz
address.c COPYING globals-structtypes.h main.c ntop_win32.c ssl.c
admin.c database.c graph.c Makefile.am ntop_win32.h stamp-h.in
argv.c dataFormat.c hash.c Makefile.in oui.txt.gz subnets.txt
AUTHORS depcomp html Makefile.mingw packages SUPPORT_NTOP.txt
autogen.sh dirent.c http.c MANIFESTO pbuf.c term.c
autom4te.cache docs iface.c map.c perl THANKS
autotoolversions emitter.c iface.h missing perl.c traffic.c
ChangeLog etter.finger.os.gz initialize.c mkinstalldirs plugin.c trivialcompilemessage
compile fcReport.c INSTALL NetFlow plugins util.c
confdefs.h fcUtils.c installer NEWS pluginSkeleton.c utildl.c
config.guess fcUtils.h install-sh ntop.8 PORTING utils
config.h.in getopt1.c iwtan ntop.c prefs.c vendor.c
config.h.in~ getopt.c l7.c ntop-cert.pem protocols.c vt.sed
config.log getopt.h l7-patterns ntop-config.in README webInterface.c
config.sub globals-core.c leaks.c ntop_darwin.c report.c www
[root@jazzman-server ntop]#
[root@jazzman ntop]# ./autogen.sh
Starting ntop automatic configuration system v.0.2.3
Please be patient, there is a lot to do...
1. Testing gnu tools....
libtool ..... 1.5.22
.... ok
automake .... 1.9.6
.... ok
autoconf .... 2.59
.... ok
2. Preparing for libtool ....
You should update your `aclocal.m4' by running aclocal.
.... done
3. Create acinclude.m4, local definitions for automake ...
.... done
4. Running aclocal to create aclocal.m4 ...
.... done
5. Running autoheader to create config.h.in ...
.... done
6. Running automake to create Makefile.in ...
.... done
7. Running autoconf to create configure ...
.... done
8. Running ./configure ...
I am going to run ./configure with no arguments
if you wish to pass any to it, please specify them on the ./autogen.sh command line.
Welcome to ntop, Version 3.3.9
copyright (c) 1998-2008 Luca Deri <deri@ntop.org>
Configuration script version v3.3.9-06-11-2008
************************************************************************
* *
* NOTICE: I know you're used to ignoring output from ./configure *
* *
* ntop has a lot of complexity and interdependences. *
* *
* Please, please AT LEAST read the stuff in these boxes! *
* *
*>>> The ACTION taken by ./configure is shown prefixed with '>>>' *
* *
* If that ACTION is unacceptable, *
*??? Steps to take to fix the problem are shown, prefixed with '???' *
* *
************************************************************************
NOTE:
To enable additional, debugging messages during the ./configure
execution, do this before running ./configure:
$ export NTOPCONFIGDEBUG=yes
Configuring ntop according to your request(s):
./configure
checking build system type... i686-redhat-linux-gnu
checking host system type... i686-redhat-linux-gnu
checking target system type... i686-redhat-linux-gnu
checking for a BSD-compatible install... /usr/bin/install -c
checking whether build environment is sane... yes
checking for gawk... gawk
checking whether make sets $(MAKE)... yes
checking for style of include used by make... GNU
checking for gcc... gcc
checking for C compiler default output file name... a.out
checking whether the C compiler works... yes
checking whether we are cross compiling... no
checking for suffix of executables...
checking for suffix of object files... o
checking whether we are using the GNU C compiler... yes
checking whether gcc accepts -g... yes
checking for gcc option to accept ANSI C... none needed
checking dependency style of gcc... gcc3
checking how to run the C preprocessor... gcc -E
checking for gcc... (cached) gcc
checking whether we are using the GNU C compiler... (cached) yes
checking whether gcc accepts -g... (cached) yes
checking for gcc option to accept ANSI C... (cached) none needed
checking dependency style of gcc... (cached) gcc3
checking for a BSD-compatible install... /usr/bin/install -c
checking whether ln -s works... yes
checking whether make sets $(MAKE)... (cached) yes
checking for a sed that does not truncate output... /bin/sed
checking for egrep... grep -E
checking for ld used by gcc... /usr/bin/ld
checking if the linker (/usr/bin/ld) is GNU ld... yes
checking for /usr/bin/ld option to reload object files... -r
checking for BSD-compatible nm... /usr/bin/nm -B
checking how to recognise dependent libraries... pass_all
checking for ANSI C header files... yes
checking for sys/types.h... yes
checking for sys/stat.h... yes
checking for stdlib.h... yes
checking for string.h... yes
checking for memory.h... yes
checking for strings.h... yes
checking for inttypes.h... yes
checking for stdint.h... yes
checking for unistd.h... yes
checking dlfcn.h usability... yes
checking dlfcn.h presence... yes
checking for dlfcn.h... yes
checking for g++... g++
checking whether we are using the GNU C++ compiler... yes
checking whether g++ accepts -g... yes
checking dependency style of g++... gcc3
checking how to run the C++ preprocessor... g++ -E
checking for g77... no
checking for f77... no
checking for xlf... no
checking for frt... no
checking for pgf77... no
checking for fort77... no
checking for fl32... no
checking for af77... no
checking for f90... no
checking for xlf90... no
checking for pgf90... no
checking for epcf90... no
checking for f95... f95
checking whether we are using the GNU Fortran 77 compiler... yes
checking whether f95 accepts -g... yes
checking the maximum length of command line arguments... 32768
checking command to parse /usr/bin/nm -B output from gcc object... ok
checking for objdir... .libs
checking for ar... ar
checking for ranlib... ranlib
checking for strip... strip
checking if gcc supports -fno-rtti -fno-exceptions... no
checking for gcc option to produce PIC... -fPIC
checking if gcc PIC flag -fPIC works... yes
checking if gcc static flag -static works... yes
checking if gcc supports -c -o file.o... yes
checking whether the gcc linker (/usr/bin/ld) supports shared libraries... yes
checking whether -lc should be explicitly linked in... no
checking dynamic linker characteristics... GNU/Linux ld.so
checking how to hardcode library paths into programs... immediate
checking whether stripping libraries is possible... yes
checking if libtool supports shared libraries... yes
checking whether to build shared libraries... yes
checking whether to build static libraries... yes
configure: creating libtool
appending configuration tag "CXX" to libtool
checking for ld used by g++... /usr/bin/ld
checking if the linker (/usr/bin/ld) is GNU ld... yes
checking whether the g++ linker (/usr/bin/ld) supports shared libraries... yes
checking for g++ option to produce PIC... -fPIC
checking if g++ PIC flag -fPIC works... yes
checking if g++ static flag -static works... yes
checking if g++ supports -c -o file.o... yes
checking whether the g++ linker (/usr/bin/ld) supports shared libraries... yes
checking dynamic linker characteristics... GNU/Linux ld.so
checking how to hardcode library paths into programs... immediate
appending configuration tag "F77" to libtool
checking if libtool supports shared libraries... yes
checking whether to build shared libraries... yes
checking whether to build static libraries... yes
checking for f95 option to produce PIC... -fPIC
checking if f95 PIC flag -fPIC works... yes
checking if f95 static flag -static works... yes
checking if f95 supports -c -o file.o... yes
checking whether the f95 linker (/usr/bin/ld) supports shared libraries... yes
checking dynamic linker characteristics... GNU/Linux ld.so
checking how to hardcode library paths into programs... immediate
checking for aclocal.m4... yes
checking for depcomp... yes
checking for library containing gethostbyname... none required
checking for library containing socket... none required
Checking C compiler program and features...
checking for gcc... (cached) gcc
checking whether we are using the GNU C compiler... (cached) yes
checking whether gcc accepts -g... (cached) yes
checking for gcc option to accept ANSI C... (cached) none needed
checking dependency style of gcc... (cached) gcc3
*******************************************************************
*
* Checking for unique options for i686-redhat-linux-gnu, gcc...
*
* This appears to be LINUX redhat 5.1
*
* Testing for extra configuration options for LINUX redhat 5.1
*
*******************************************************************
Test the compiler and setup CFLAGS...
checking if compiler accepts -W (warning flags)... yes
Critical library/include tests...
found in /usr/local
checking for pcap_next_ex in -lpcap... yes
checking for gdbm...
checking gdbm.h usability... yes
checking gdbm.h presence... yes
checking for gdbm.h... yes
checking for gdbm_open in -lgdbm... yes
checking for pcre_refcount in -lpcre... no
-------------------------------------------------------------------
**Handling your --enable and --disable requests**
SSL?
...(Default) Requested if available. Disable via ./configure command line option --without-ssl.
sslv3?
...(Default) Disabled. Request via ./configure command line option --enable-sslv3
ssl watchdog?
...(Default) Disabled. Request via ./configure command line option --enable-sslwatchdog
or ntop run time option --ssl-watchdog.
TCP Wrappers?
...(Default) Disabled. Request via ./configure command line option --with-tcpwrap.
Plugins?
...(Default) Requested. Disable via ./configure command line option --disable-plugins.
Jumbo (9k) Ethernet Frames?
...(Default) Disabled. Request via ./configure command line option --enable-jumbo-frames.
Processing the rest of the ROOT/DIRECTORY entries
checking for an ANSI C-conforming const... yes
checking for working volatile... yes
checking for inline... inline
checking whether char is unsigned... no
checking for working long double with more range or precision than double... yes
checking whether byte ordering is bigendian... no
Testing headers and functions...
checking for ANSI C header files... (cached) yes
checking for dirent.h that defines DIR... yes
checking for library containing opendir... none required
checking for sys/wait.h that is POSIX.1 compatible... yes
checking whether time.h and sys/time.h may both be included... yes
checking float.h usability... yes
checking float.h presence... yes
checking for float.h... yes
checking stddef.h usability... yes
checking stddef.h presence... yes
checking for stddef.h... yes
checking for stdlib.h... (cached) yes
checking for string.h... (cached) yes
checking pcre.h usability... no
checking pcre.h presence... no
checking for pcre.h... no
checking errno.h usability... yes
checking errno.h presence... yes
checking for errno.h... yes
checking fcntl.h usability... yes
checking fcntl.h presence... yes
checking for fcntl.h... yes
checking limits.h usability... yes
checking limits.h presence... yes
checking for limits.h... yes
checking math.h usability... yes
checking math.h presence... yes
checking for math.h... yes
checking signal.h usability... yes
checking signal.h presence... yes
checking for signal.h... yes
checking stdarg.h usability... yes
checking stdarg.h presence... yes
checking for stdarg.h... yes
checking for unistd.h... (cached) yes
checking stdio.h usability... yes
checking stdio.h presence... yes
checking for stdio.h... yes
checking for strings.h... (cached) yes
checking sys/ioctl.h usability... yes
checking sys/ioctl.h presence... yes
checking for sys/ioctl.h... yes
checking sys/socket.h usability... yes
checking sys/socket.h presence... yes
checking for sys/socket.h... yes
checking sys/time.h usability... yes
checking sys/time.h presence... yes
checking for sys/time.h... yes
checking for sys/types.h... (cached) yes
checking setjmp.h usability... yes
checking setjmp.h presence... yes
checking for setjmp.h... yes
checking ieeefp.h usability... no
checking ieeefp.h presence... no
checking for ieeefp.h... no
checking shadow.h usability... yes
checking shadow.h presence... yes
checking for shadow.h... yes
checking sys/utsname.h usability... yes
checking sys/utsname.h presence... yes
checking for sys/utsname.h... yes
checking netdb.h usability... yes
checking netdb.h presence... yes
checking for netdb.h... yes
checking netinet/in.h usability... yes
checking netinet/in.h presence... yes
checking for netinet/in.h... yes
checking arpa/inet.h usability... yes
checking arpa/inet.h presence... yes
checking for arpa/inet.h... yes
checking arpa/nameser.h usability... yes
checking arpa/nameser.h presence... yes
checking for arpa/nameser.h... yes
checking net/ethernet.h usability... yes
checking net/ethernet.h presence... yes
checking for net/ethernet.h... yes
checking for zlibVersion in -lz... yes
checking for main in -lrrd_th... yes
checking for net/if.h... yes
checking net/if_dl.h usability... no
checking net/if_dl.h presence... no
checking for net/if_dl.h... no
checking for netinet/if_ether.h... yes
checking netinet/in_systm.h usability... yes
checking netinet/in_systm.h presence... yes
checking for netinet/in_systm.h... yes
checking for netinet/ip.h... yes
checking for netinet/ip_icmp.h... yes
checking netinet/tcp.h usability... yes
checking netinet/tcp.h presence... yes
checking for netinet/tcp.h... yes
checking for netinet/udp.h... yes
checking sys/param.h usability... yes
checking sys/param.h presence... yes
checking for sys/param.h... yes
checking for net/if_dl.h... (cached) no
checking for sys/sysctl.h... yes
checking for net/route.h... yes
checking ethertype.h usability... no
checking ethertype.h presence... no
checking for ethertype.h... no
checking net/ppp_defs.h usability... yes
checking net/ppp_defs.h presence... yes
checking for net/ppp_defs.h... yes
checking for linux/if_pppox.h... yes
checking openssl/rsa.h usability... yes
checking openssl/rsa.h presence... yes
checking for openssl/rsa.h... yes
checking openssl/crypto.h usability... yes
checking openssl/crypto.h presence... yes
checking for openssl/crypto.h... yes
checking openssl/x509.h usability... yes
checking openssl/x509.h presence... yes
checking for openssl/x509.h... yes
checking openssl/pem.h usability... yes
checking openssl/pem.h presence... yes
checking for openssl/pem.h... yes
checking openssl/ssl.h usability... yes
checking openssl/ssl.h presence... yes
checking for openssl/ssl.h... yes
checking openssl/err.h usability... yes
checking openssl/err.h presence... yes
checking for openssl/err.h... yes
checking for SSLeay_version in -lcrypto... yes
checking for SSL_accept in -lssl... yes
checking crypt.h usability... yes
checking crypt.h presence... yes
checking for crypt.h... yes
checking pwd.h usability... yes
checking pwd.h presence... yes
checking for pwd.h... yes
checking security/pam_appl.h usability... yes
checking security/pam_appl.h presence... yes
checking for security/pam_appl.h... yes
checking for shadow.h... (cached) yes
checking dirent.h usability... yes
checking dirent.h presence... yes
checking for dirent.h... yes
checking for dlfcn.h... (cached) yes
checking dl.h usability... no
checking dl.h presence... no
checking for dl.h... no
checking getopt.h usability... yes
checking getopt.h presence... yes
checking for getopt.h... yes
checking if.h usability... no
checking if.h presence... no
checking for if.h... no
checking for inttypes.h... (cached) yes
checking for memory.h... (cached) yes
checking sys/ldr.h usability... no
checking sys/ldr.h presence... no
checking for sys/ldr.h... no
checking for sys/param.h... (cached) yes
checking sys/select.h usability... yes
checking sys/select.h presence... yes
checking for sys/select.h... yes
checking sys/sockio.h usability... no
checking sys/sockio.h presence... no
checking for sys/sockio.h... no
checking for sys/stat.h... (cached) yes
checking sys/un.h usability... yes
checking sys/un.h presence... yes
checking for sys/un.h... yes
checking for sys/wait.h... (cached) yes
checking zlib.h usability... yes
checking zlib.h presence... yes
checking for zlib.h... yes
checking sched.h usability... yes
checking sched.h presence... yes
checking for sched.h... yes
checking sys/sched.h usability... no
checking sys/sched.h presence... no
checking for sys/sched.h... no
checking pthread.h usability... yes
checking pthread.h presence... yes
checking for pthread.h... yes
checking sys/syslog.h usability... yes
checking sys/syslog.h presence... yes
checking for sys/syslog.h... yes
checking syslog.h usability... yes
checking syslog.h presence... yes
checking for syslog.h... yes
checking tcpd.h usability... yes
checking tcpd.h presence... yes
checking for tcpd.h... yes
checking ip6.h usability... no
checking ip6.h presence... no
checking for ip6.h... no
checking icmp6.h usability... no
checking icmp6.h presence... no
checking for icmp6.h... no
checking for netinet/ip6.h... yes
checking for netinet/icmp6.h... yes
checking for sysctl... yes
checking for finite... yes
checking for isinf... yes
checking for pid_t... yes
checking for size_t... yes
checking whether time.h and sys/time.h may both be included... (cached) yes
checking whether struct tm is in sys/time.h or time.h... time.h
checking for struct tm.tm_zone... yes
checking for typedef u_int64_t... yes
checking for typedef uint64_t... no
checking for typedef u_int32_t... yes
checking for typedef u_int16_t... yes
checking for typedef u_int8_t... yes
checking for typedef int64_t... yes
checking for typedef int32_t... yes
checking for typedef int16_t... yes
checking for typedef int8_t... yes
checking trivial compile... ok
checking for backtrace in -lc... yes
checking for crypt in -lc... no
checking for crypt in -lcrypt... yes
checking for crypt_get_format_get_format in -lc... no
checking for crypt_get_format in -lcrypt... no
checking for getopt_long in -lc... yes
checking for dlopen in -lc... yes
checking for dladdr (GNU extension)... yes
checking for sin in -lc... yes
checking for ceil in -lc... yes
checking for pthread_create in -lpthread... yes
checking for sem_init in -lposix4... no
checking for unistd.h... (cached) yes
checking vfork.h usability... no
checking vfork.h presence... no
checking for vfork.h... no
checking for fork... yes
checking for vfork... yes
checking for working fork... yes
checking for working vfork... (cached) yes
checking whether gcc needs -traditional... no
checking for working memcmp... yes
checking for function prototypes... yes
checking whether setvbuf arguments are reversed... no
checking return type of signal handlers... void
checking whether lstat dereferences a symlink specified with a trailing slash... yes
checking whether stat accepts an empty string... no
checking for strftime... yes
checking for alarm... yes
checking for endpwent... yes
checking for gethostbyaddr... yes
checking for gethostbyname... yes
checking for gethostname... yes
checking for gethostbyaddr_r... yes
checking for getipnodebyaddr... no
checking for getpass... yes
checking for gettimeofday... yes
checking for localtime_r... yes
checking for memchr... yes
checking for memset... yes
checking for putenv... yes
checking for sched_yield... yes
checking for select... yes
checking for socket... yes
checking for snprintf... yes
checking for sqrtf... yes
checking for strcasecmp... yes
checking for strncasecmp... yes
checking for strcasestr... yes
checking for strchr... yes
checking for strrchr... yes
checking for strcspn... yes
checking for strdup... yes
checking for strerror... yes
checking for strpbrk... yes
checking for strsignal... yes
checking for strspn... yes
checking for strstr... yes
checking for strtoul... yes
checking for uname... yes
checking for strtok_r... yes
Now, let's check for problems with what we've found...
Testing Required libraries and headers**
checking for required C headers... ok
checking for crypt... ok
checking for dynamic load module... ok
-------------------------------------------------------------------
**Testing Optional libraries and headers**
checking for Multithreading... ok
checking for openSSL... ok
checking for zlib... ok
checking for perl... perl
checking whether perl development environment is present... yes
checking sctp... no
checking pthread_atfork... yes
Miscelaneous settings...
checking for gcc backtrace... found - automatic SIGSEGV backtrace enabled via -K
checking for gcc getopt_long... found - long command line options are enabled
checking for facilitynames - define SYSLOG_NAMES option... available
checking if ether_header uses ether_addr structs... no
checking if in6_addr is defined for sFlowPlugin... yes
-------------------------------------------------------------------
Removing dups and misplaced entries from LIBS and INCS...
--04:28:09-- http://www.maxmind.com/download/geoip/api/c/GeoIP.tar.gz
Resolving www.maxmind.com... failed: Temporary failure in name resolution.
tar: GeoIP.tar.gz: Cannot open: No such file or directory
tar: Error is not recoverable: exiting now
tar: Child returned status 2
tar: Error exit delayed from previous errors
./configure: line 38317: ./configure: No such file or directory
make: *** No targets specified and no makefile found. Stop.
--04:28:09-- http://www.maxmind.com/download/geoip/database/GeoLiteCity.dat.gz
Resolving www.maxmind.com... failed: Temporary failure in name resolution.
gunzip: GeoLiteCity.dat.gz: No such file or directory
--04:28:09-- http://www.maxmind.com/download/geoip/database/asnum/GeoIPASNum.dat.gz
Resolving www.maxmind.com... failed: Temporary failure in name resolution.
gunzip: GeoIPASNum.dat.gz: No such file or directory
===================================================================
This is your ntop 3.3.9 configuration:
Host System Type : i686-redhat-linux-gnu
Preprocessor (cppflags) : -DLINUX -I/usr/local/include -I/opt/local/include
Compiler (cflags) : gcc -g -O2 -I/usr/local/include -I/opt/local/include -Wshadow -Wpointer-arith -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -fPIC -DPIC -I/libGeoIP/
Defines : -DHAVE_CONFIG_H
Loader (ldflags) : -L/usr/local/lib -L/opt/local/lib -L/libGeoIP/.libs/ -lGeoIP
Include path : -I/usr/local/include
System Libs : -lpthread -lcrypt -lc -lssl -lcrypto -lrrd_th -lgdbm -lz
Locale : /usr/lib/locale
External packages:
LBL pcap .h : standard system headers
LBL pcap library : standard system libraries
GNU gdbm .h : standard system headers
GNU gdbm library : standard system libraries
zlib .h : standard system headers
zlib library : standard system libraries
openSSL .h : standard system headers
openSSL library : standard system libraries
Install directories:
Default prefix: /usr/local
Install into: NONE (default or via --prefix request)
Data files are in /usr/local/share/ntop
Config files are in /usr/local/etc/ntop
Run directory is /usr/local/var/ntop
Plugin files are in /usr/local/lib/ntop/plugins
Database files are in /usr/local/var/ntop
-------------------------------------------------------------------
Creating files...
configure: creating ./config.status
config.status: creating Makefile
config.status: error: cannot find input file: Makefile.in
05 Sep 2005 17:09
Extra Layer7 defs?
Anyone know of a way to add extra Layer 7 defs to ntop so instead of "Unknown" it will display the application that is being used. Like it does www, smtp, ssh, etc. But for those it does not know it just says UNKNOWN.
Netfilter has a package of Layer7 defs, but I want to add that to ntop...
14 Aug 2004 06:10
Re: what happened to the good ntop
This might meet your needs better:
http://freshmeat.net/projects/iptraf/ (http://freshmeat.net/projects/iptraf/)
Sincerely,
Jeff
13 Aug 2004 22:58
what happened to the good ntop
when i ran linux i ran a console only ntop, it was like top only for network ( i could guess thats why it was called ntop). the last few years ive been lazy and stuck with netstat. tonight i decided to try out the ntop that i loved in the past. wtf is this, an embedded webserver, ssl, all kinds of shit. this should no longer be ntop as its veered very far away from top. this should be called nsomethingnew. either release ntopOS or leave it be.