ntop

Ntop (network top) is an open source and free software that can be recorded and analyzed using the network traffic. The top name is inspired by the Unix program, because it can all active network connections analyzed and sorted according to various criteria represent. Ntop is, however, now also able to read in log files to evaluate these protocols and hence graphically.

The program was initiated by Luca Deri, an Italian scientist at the University of Pisa in June 1998, but is now developed by a developer broader front.

Services

Network Technically ntop between OSI layer 2 (MAC ) and 3 ( IP) to settle.

The GUI of ntop is running as a web server, the connection can be optionally encrypted using OpenSSL and requires a web browser to view the output of the analysis. The issue is partly intricately designed (JavaScript, speaking graphical elements). But there is also the possibility of the issue, similar to tcpdump, redirect to a text file.

SFlow and Netflow are supported, as RRD and a variety of other protocols, among many other TCP / UDP / ICMP, (R ) ARP, IPX, NetBIOS, AppleTalk, SMTP / POP / IMAP, and SNMP. Depending on the hardware interface of the host also Token Ring or Fiber Channel are supported in addition to Ethernet.

The disadvantage of ntop is the lack of storage capability of the collected network data. To go after a restart of the program, collected information is lost. Also problematic is the one of the thus increased consumption of main memory, on the other hand you can not permanently as a tool for graphical analysis, as is the case for example with MRTG, use ntop itself. This functionality is however partially retrofitted on existing plugins. The RRD plugin allows here the regular storing long-term data in RRD databases, which can then be used for long-term evaluations.

610538
de