nProbe
nProbe copied to clipboard
ntop
Open source components and extensions for nProbe
I have tried to add another marker for Malware - 2, however when I restart nprobe, no marks are being listed. # Pool definition {"pool":{"id":1,"name":"Local Networks","ip": [ "10.0.0.0/8", "172.0.0.0/8", "216.174.159.90/32"...
Can I export the traffic to two elasticsearches, both of which need complete flow without load balancing.
1. How many hosts can monitor with nprobe agent + ntopng? 2. How much traffic can the host monitored by nprobe agent support?
Hi, I have been using nfcapd to collect netflows and used to export them into a CSV using nfdump. This whole process has been working fine, however, I now have...
It would be desirable to have an `%NTOPNG_ENTERPRISE_INFO` IE containing information which is similar to the wireshark INFO column or the ntopng INFO column. Such IE would contain nDPI-provided data:...
Hi, will preface with I'm new to nprobe and Docker so please forgive any basic errors I've overlooked. **Wondering if anyone managed to get nProbe working properly on a Mac?**...
Default template in collector mode (`EXPANDED_NTOPNG_SHORTCUT_COLLECTOR_MODE`) should only include `%TCP_FLAGS` and not `%CLIENT_TCP_FLAGS %SERVER_TCP_FLAGS`. This because NetFlow flags are cumulative. V5: > 37 | tcp_flags | Cumulative OR of TCP...
Looking into a network congestion issue , possible in correctly classified dscp/tos markings nprobe is running on a debian "network management" machine that has multiple nics for monitoring cisco span...
When cento is executed as -A -i fbcard:0:a00 --zc -D 2 --aggregated-egress-queue --skip-fragments then nDPI does not properly identify an SSH session established on a nonstandard port when cento is...
nProbe hangs on shutdown when running a capture from a Netfilter queue
