ntop – High Performance Network Monitoring Solutions based on Open Source and Commodity Hardware.

ntopng High-speed web-based traffic analysis.
ntopng Edge Make your network a safer place
nDPI Identify hundreds of L7 protocols.
nProbe Cento 100Gbit NetFlow Probe and Traffic Classifier
Get Started! Go to the download page

Packet Capture

Wire-speed packet capture/transmission using commodity hardware with PF_RING. Zero-Copy packet distribution across threads, applications, Virtual Machines. Libpcap support for seamless integration with legacy applications.

Traffic Recording

10 Gbit and above lossless network traffic recording with n2disk. Industry standard PCAP file format. On-the-fly indexing to quickly retrieve interesting packets using fast-BPF and time interval. Precise traffic replay with disk2n.

Network Probe

nProbe: extensible NetFlow v5/v9/IPFIX probe with plugins support for L7 content inspection. nProbe Cento: up to 100 Gbit NetFlow, traffic classification, and packet shunting for IDS/packet-to-disk acceleration.

Traffic Analysis

High-speed web-based traffic analysis and flow collection using ntopng. Persistent traffic statistics in RRD format. Layer 7 analysis by leveraging on nDPI, an Open Source DPI framework.

HowTo Monitor Traffic in SMEs and Home Networks: A Primer

September 10, 2021

In the first part of this series of articles, we focused on monitoring ISPs and MSP traffic. Today we analyse network traffic in SMEs and home networks. The typical network layout of a home or a small business is depicted … Continue reading →
How To Configure Flow and Packet Deduplication in nProbe

September 2, 2021

Sometimes traffic monitoring requires data deduplication as due to topology or hardware constraints there are some network traffic activities that are monitored by multiple devices, and others that are monitored only by a single device. This means that unless some … Continue reading →
HowTo Monitor Customer Traffic in Managed Service Providers and ISPs

August 20, 2021

ISPs have provided Internet access to customers for years and the only goal was to connect their users to the Internet. Managed Service Providers (MSP) and Managed Security Service Providers (MSSP) deliver network, services and infrastructure on customer premises and … Continue reading →
ntopng 5.0 Is Out: Modern Traffic Monitoring for AIOps and Cybersecurity

August 18, 2021

ntopng was initially designed as a tool for realtime network traffic monitoring. The idea was to create a DPI-based tool able to report traffic statistics. Overtime we have added the ability to implement active monitoring checks, SNMP, and various other … Continue reading →
Introducing PF_RING 8.0: Batch Packet Processing and XDP Support

August 11, 2021

This is to announce a new PF_RING release 8.0. This new stable version includes enhancements for improving application performances, by adding support for batch processing also in the standard API (it was already available in the ZC API), and consolidates … Continue reading →
Configuring nDPI Flow Risk Exceptions

August 4, 2021

One of the newest features of nDPI 4 is the ability to identify flow risks. Unfortunately sometimes you need to add exceptions as some of those risks, while correct, need to be ignored. Examples include: An old device that is … Continue reading →
Infrastructure Monitoring: Observing The Health and Status of Multiple ntopng Instances

July 27, 2021

Introduction Quis custodiet ipsos custodes? (Juvenal). In other words: who will guard the guards themselves? If you use ntopng to monitor your network, you also need to make sure ntopng is monitored as in case of failure, ntopng will not … Continue reading →
nProbe 9.6 Released: IPS, ClickHouse, Observation Points, FreeBSD Support

July 26, 2021

This is to announce the release of nProbe 9.6 whose main features include: Support of IPS (Intrusion Prevention System) mode. Added support of high-capacity ClickHouse database enabling nProbe to dump ~125k Fps to database. Implemented the concept of Observation Point … Continue reading →
Introducing nProbe Cento 1.14

July 26, 2021

This is to announce a new release of the ntop’s 100 Gbit probe, nProbe Cento 1.14. In this version we have integrated the latest features from nDPI, the ntop’s Deep-Packet-Inspection engine, that is now 2.5x faster than the previous version. … Continue reading →
Introducing nDPI 4.0: DPI for CyberSecurity and Traffic Analysis

July 26, 2021

This is to announce nDPI 4.0. With this new stable release we have extended the scope of nDPI that was originally conceived as a toolkit for detecting application protocols. nDPI is now a modern library for packet processing that in … Continue reading →

ntopng High-speed web-based traffic analysis.

ntopng Edge Make your network a safer place

nDPI Identify hundreds of L7 protocols.

nProbe Cento 100Gbit NetFlow Probe and Traffic Classifier

Get Started! Go to the download page

Packet Capture

Traffic Recording

Network Probe

Traffic Analysis

HowTo Monitor Traffic in SMEs and Home Networks: A Primer

How To Configure Flow and Packet Deduplication in nProbe

HowTo Monitor Customer Traffic in Managed Service Providers and ISPs

ntopng 5.0 Is Out: Modern Traffic Monitoring for AIOps and Cybersecurity

Introducing PF_RING 8.0: Batch Packet Processing and XDP Support

Configuring nDPI Flow Risk Exceptions

Infrastructure Monitoring: Observing The Health and Status of Multiple ntopng Instances

nProbe 9.6 Released: IPS, ClickHouse, Observation Points, FreeBSD Support

Introducing nProbe Cento 1.14

Introducing nDPI 4.0: DPI for CyberSecurity and Traffic Analysis

Latest Posts

Upcoming Events