ntopng 2.2 Just Released

Posted · Add Comment

After over 6 months of work, we’re pleased to announce the release of ntopng 2.2 (as already discussed even numbers identify stable releases whereas odd number development versions). The goal of this release has been to consolidate the existing work, fix issues reported by users, improve the reports we have introduced in 2.0 and pave the way for the next development iteration where we plan to add new features (we’ll present the roadmap in the next few weeks). The main new features of this release is the introduction of traffic profiles, new historical interface redesigned from scratch, various reports improvements, support of layer-2 traffic analysis,integration with NetFilter (Linux only).

Enjoy!

Changelog:

  • Implementation of BPF-based traffic profiles (similar to NFsen named filters) , logical flow-based aggregations — e.g., Facebook traffic originating at host X. Real-time statistics as well as historical data are collected for each traffic profile
  • Added a fine-grained network traffic breakdown that captures and stores ingress, egress, and inner traffic for each local network
  • Redesign of historical interfaces. Historical interface data have been seamlessly integrated with real-time data
  • Historical flow dump and runtime drill-down of historical data with support for MySQL and ElasticSearch
  • Built-in support for protocols:
    • CAPWAP (Control And Provisioning of Wireless Access Points, <https://tools.ietf.org/html/rfc5415>)
    • BATMAN (<http://www.open-mesh.org/projects/open-mesh/wiki/BATMANConcept>)
    • TZSP (TaZmen Sniffer Protocol)
  • Added SIP and RTP protocols information in flow details
  • Additional MAC-based host calassification
  • Added support for Linux TUN/TAP devices and integration with Linux Netfilter for capturing/dropping packets relying on the Linux firewall.
  • Extended and improved supported OSes: EdgeOS, Centos 6/7, Ubuntu 12.04/14.04, Debian, Windows x64, Raspbian (Raspberry)
  • Extended and improved supported architectures: x86, x86-64, MIPS, ARM.
  • Documentation and User Guide significanly improved
  • Added a great deal of READMEs, including ElasticSearch, bridging, traffic shaping and policing, NetBeans development
  • Improved stability both under normal and high network loads
  • Fixed many minor bugs