• E-Shop Legal Information
  • E-Shop Terms and Conditions
  • GitHub
  • Resellers
  • Newsletter
  • Home
ntop
  • Home
  • Blog
  • Products
    • Packet Capture
      • PF_RING
      • PF_RING ZC (Zero Copy)
      • PF_RING FT (Flow Table)
      • nTap
    • Traffic Recording & Replay
      • n2disk
      • disk2n
    • Flow-based Traffic Analysis
      • nProbe
      • nProbe™ Cento
    • Traffic Analysis and Enforcement
      • ntopng
      • ntopng Edge
    • Deep Packet Inspection
      • nDPI
    • DDoS Mitigation and VPN
      • nScrub
      • n2n
  • nBox
    • Hardware Appliances
      • nBox NetFlow/IPFIX
      • nBox Recorder
  • Support
    • Documentation
      • FAQs
      • User’s Guides
      • Video Tutorials
    • Need Help?
      • Bug Report
      • Contact Us
      • Community Support
      • Commercial Support
    • Training
      • Professional Training
    • Misc
      • Code Security
      • Contributor License Agreement
      • Brochures
  • GitHub
  • Get Started
  • About
    • About Us
    • The ntop Team
    • Work With Us at ntop
    • ntop Conference
    • Credits
    • Partners
    • Resellers
    • Legal Information
    • Privacy Policy
    • Locations
    • Resources
  • Shop
admin 0

Scaling Up ntopng Flow and Packet Processing

Posted June 7, 2023 · Add Comment

As traffic rate increases, it is important to tune packet processing in order to avoid drops and thus educe visibility. This post will show you a few tricks for improving the overall performance and better exploit modern multicore systems. The … Continue reading →

Read More
admin 0

Enabling Zeek and Suricata On-Demand at 40/100 Gbit using PF_RING

Posted June 5, 2023 · Add Comment

Overview Those of you who have some experience with IDS or IPS systems, like Zeek and Suricata, are probably aware of how CPU intensive and memory consuming those applications are due to the nature of the activities they carry on … Continue reading →

Read More
admin 0

Now available ntopng/nprobe ARM64 Docker Images

Posted May 1, 2023 · Add Comment

Supporting 64 bit ARM platforms is important because there is now a plethora of inexpensive boards based on this architecture. Thanks to the use of docker containers, several manufacturers allow their devices to take advantage of this technology to run … Continue reading →

Read More
admin 0

How To Analyse Asymmetric VLAN Traffic

Posted April 26, 2023 · Add Comment

A VLAN is a method for partitioning a layer two broadcast domain creating virtual networks of homogeneous systems hence promoting network segmentation. A ethernet port with no VLAN tag is called access port, whereas a switch port with VLAN-tagged packets … Continue reading →

Read More
admin 0

How Flow-Based Traffic Classification Works

Posted April 14, 2023 · Add Comment

Many ntop products such as ntopng, nProbe, and PF_RING FT just to name a few are based on network flows. However not all our users know in detail what is a network flow, and how it works in practice. This … Continue reading →

Read More
admin 0

nProbe 10.2 is Available: Redesigned Kafka Export, nTap and Google Cloud Support

Posted February 1, 2023 · Add Comment

Today we announce the availability of nProbe 10.2 that features native nTap support for generating flows from remote devices, and redesigned Kafka support for both flow export and communication with ntopng. With this respect, the new –ntopng <URL> command line … Continue reading →

Read More
admin 0

Scaling Up: How To Collect, Analyse, and Store Flows at Scale (100 Gbit+)

Posted January 18, 2023 · Add Comment

Most ntop tools such as nProbe cento and n2disk have been designed to run at high speed (today we consider 100 Gbit a high-speed link). ntopng instead has to perform many activities including behavioral traffic analysis that makes it unable … Continue reading →

Read More
admin 0

HowTo Monitor Zoom Performance and Video/Call Quality

Posted December 10, 2022 · Add Comment

Zoom is a popular platform for video communications and team collaboration. As many other cloud services, network administrators need to supervise Zoom network traffic usage. DPI toolkits such as nDPI are useful for identifying Zoom traffic for supervising the network … Continue reading →

Read More
admin 0

HowTo Deploy nProbe and ntopng on the Cloud

Posted November 16, 2022 · Add Comment

Some of our customers deploy ntopng on the cloud in order to collect flows coming from private nProbe instances often deployed on private networks or clouds. Thanks to ZMQ/Kafka communications, data sent by nProbe to ntopng travel encrypted; this is … Continue reading →

Read More
admin 0

Howto use Kafka (instead of ZMQ) For Reliable Flow Collection and IPC

Posted October 27, 2022 · Add Comment

Historically, we have used ZMQ for interconnecting nProbe to ntopng, as this is a fast and simple messaging system. However one of they key advantage of ZMQ of being broker-less is sometime a problem. In case of maintenance, traffic peaks, … Continue reading →

Read More
  • ← Previous Entries
 
  • Popular
  • Recent
  • Comments
  • Tags
  • PF_RING 6.0.3 Just ReleasedToday we have released PF_RING 6.0.3  a maintenance release that [...]
  • ntopng Deep Dive: Interview with Ivan PepelnjakLast month Ivan Pepelnjak interviewed me on Software Gone Wild [...]
  • ntop is back: ntopng 1.0 just releasedAfter 15 years since the introduction of the original ntop [...]
  • Enabling Zeek and Suricata On-Demand at 40/100 Gbit using PF_RINGOverview Those of you who have some experience with IDS [...]
  • Scaling Up ntopng Flow and Packet ProcessingAs traffic rate increases it is important to tune packet [...]
  • Introducing Modbus Traffic Monitoring in ntopngModbus is an industrial protocol used to communicate with automation [...]
  • Enabling Zeek and Suricata On-Demand at 40/100 Gbit using PF_RINGOverview Those of you who have some experience with IDS [...]
  • OpenAPI: ntopng REST API for Software DevelopersMaybe not all of you know that ntopng powers in [...]
active monitoring cento containers dns ebpf elasticsearch export flows fosdem hancitor icinga2 imap infection influxdb inline layer7 n2disk netflow nProbe nprobeagent ntopng ntp performance pop release round trip time rtt security themes visibility
  • Browse By Date

  • Browse By Categories

    • Announce (52)
    • cento (9)
    • Components (1)
    • Cybersecurity (23)
    • Features (3)
    • Guides (11)
    • libebpfflow (1)
    • n2disk (21)
    • n2n (7)
    • nbox (7)
    • nDPI (55)
    • nEdge (6)
    • News (15)
    • nProbe (105)
    • nScrub (3)
    • ntop (116)
    • ntopng (171)
    • PF_RING (96)
    • snort (3)
    • TNAPI (11)
    • tutorials (18)
    • vPF_RING (3)
    • Webinar (16)
    • ZC (30)
 
  • Latest Posts

    • Scaling Up ntopng Flow and Packet Processing
    • Introducing Modbus Traffic Monitoring in ntopng
    • Enabling Zeek and Suricata On-Demand at 40/100 Gbit using PF_RING
    • OpenAPI: ntopng REST API for Software Developers
    • OT, ICS, SCADA: IEC 60870-5-104 in ntopng
  • Upcoming Events

    • ntopConf'23 - 21-22 September, 2023
© 1998-2023 ntop
ntop, ntopng, nDPI, PF_RING, nProbe, and n2disk are registered trademarks.