Moved the code to GitHub for easier collaboration.
Added ability to send data in Lua using UDP (for instance you can use it for exporting metrics to Graphite).
Similarly added ability to dump traffic to disk in pcap format too much traffic) on a tap interface and attach applications such as Wireshark/tcpdump to it. of a selected host) or when specific traffic conditions arise (e.g.
Added ability to dump specific traffic (e.g.
Ability to work behind an HTTP reverse proxy.
Added ability to fine-tune RRD configurations.
Integration of ntopng with nagios: you can now create nagios plugins to query ntopng and thus emit alerts based not traffic conditions.
Ability to sniff from netfilter interface.
Added flow TCP traffic statistics (packets retransmitted, lost, and out of order).
Hardened the code to support mid/large organisations and high traffic volumes, as well for operating on hosts with little memory.
Example ntopng -i eth1, -i eth2 -i view:eth1,eth2
Added ability to aggregate traffic from various network interfaces on the same interface view while keeping interface traffic split.
Also pcap file analysis can be performed directly on the web interface allowing users to display captured pcap or search result straight on the web browser. Recording configuration, management and packets retrieval can be performed just using the web interface. In this scenario ntop decided to enclose all the developed technology into a single network appliance: nBox Recorder. This has caused network trac recording activity a challenging experience. In a few years data throughput increased from 100 Mbit/s to 10 Gbit/s, reaching multi-10 Gbit/speed. Modern data networks keep growing and growing in terms of speed. nBox Recorder uses the industry standard PCAP file format to dump packets into files so the resulting output can be easily integrated with existing third party or even open-source analysis tools like ntop, Wireshark. It has been designed and developed mainly because most network security systems rely on capturing all packets (headers and payload), since any packets may have been responsible for the attack or could contain the problems that we are trying to find. With nBox Recorder you can capture full-sized network packets at gigabit rate from a live network interface and write them into files. High-speed network packet recording system nBox Recorder is a network recorder application.
0 kommentar(er)
