• Working at ntop
  • E-Shop Legal Information
  • E-Shop Terms and Conditions
  • GitHub
  • Resellers
  • Newsletter
ntop
  • Home
  • Blog
  • Products
    • Packet Capture
      • PF_RING
      • PF_RING ZC (Zero Copy)
      • PF_RING FT (Flow Table)
    • Traffic Recording & Replay
      • n2disk
      • disk2n
      • nBox Recorder
    • Flow-based Traffic Analysis
      • nProbe
      • nProbe™ Cento
      • nBox NetFlow/IPFIX
    • Traffic Analysis and Enforcement
      • ntopng
      • ntopng Edge
    • Deep Packet Inspection
      • nDPI
    • DDoS Mitigation and VPN
      • nScrub
      • n2n
  • Support
    • Documentation
      • FAQs
      • User’s Guides
      • Video Tutorials
    • Need Help?
      • Bug Report
      • Contact Us
      • Community Support
      • Commercial Support
    • Training
      • Professional Training
    • Misc
      • Code Security
      • Contributor License Agreement
      • Brochures
  • GitHub
  • Get Started
  • About
    • About Us
    • The ntop Team
    • ntop Conference
    • Credits
    • Partners
    • Resellers
    • Legal Information
    • Privacy Policy
    • Locations
    • Resources
  • Shop
admin 0

How to Configure Flow Risk Exclusions in nDPI and ntopng

Posted May 26, 2022 · Add Comment

Flow risks are the mechanism nDPI implements for detecting issues in network traffic whose theoretical design is documented in this paper Using Deep Packet Inspection in CyberTraffic Analysis we have written last year. While we are reworking the definition of … Continue reading →

Read More
admin 0

How We Simplified Data Search in ntopng

Posted March 27, 2022 · Add Comment

ntopng users are familiar with the search box present at the top of each page. It was originally designed to find hosts and jump to their details page. Over the years we have added a lot of new information in … Continue reading →

Read More
admin 0

Dispatching Alerts: How to Master Notifications in ntopng

Posted March 2, 2022 · Add Comment

Alerts in ntopng are the result of traffic analysis based on checks. Checks detect that specific indicators on traffic require attention: for instance a host whose behavioural score has exceeded a given threshold or a flow that is exfiltrating data. … Continue reading →

Read More
admin 0

Incident Analysis: How to Correlate Alerts with Flows and Packets

Posted February 18, 2022 · Add Comment

In incident analysis it is important to provide evidence of the problem  at various level of details: Alerts Alerts are the result of traffic analysis (in ntopng based on checks) that have detected specific indicators in traffic that triggered the … Continue reading →

Read More
admin 0

Using ntopng with Checkmk: A Tutorial

Posted February 10, 2022 · Add Comment

Today we’ll discuss the ntopng integration with Checkmk, a popular open source infrastructure monitoring tool to which ntopng adds traffic visibility. If IT infrastructure monitoring and network usage monitoring would see each other on Tinder, they would both for sure … Continue reading →

Read More
admin 0

You’re invited at FOSDEM 2022 (5 and 6 February) in the ntop stand

Posted February 3, 2022 · Add Comment

As most of our users know, every year we were used to meet the world of open source at FOSDEM in Brussels. Due to pandemic, this yearly event has been moved online so we invite you to attend it wherever … Continue reading →

Read More
admin 0

Welcome to ntopng 5.2: Historical Data Analysis, Better Performance and Alerting

Posted February 3, 2022 · Add Comment

Initially designed as a maintenance release, 5.2 brings many improvements in its processing engine with over 3’000 code commits. The main goal is to enhance application scalability by optimising memory and CPU usage, while introducing a new persistency layer based … Continue reading →

Read More
admin 0

ntopng and ClickHouse: Lessons Learnt at California Institute of Technology

Posted January 18, 2022 · Add Comment

Caltech has been experimenting with ntopng on our network for slightly over a year now.  We send a decent amount of traffic to ntopng, bursting up to 20Gbps, utilising Cento to read the wire and forward the data to ntopng … Continue reading →

Read More
admin 0

Historical Traffic Analysis at Scale: Using ClickHouse with ntopng

Posted January 17, 2022 · Add Comment

Last year we have announced the integration of ClickHouse, an open source high-speed database, with nProbe for high-speed flow collection and storage. Years before we have created nIndex, a columnar data indexing system that we have integrated in ntopng, but … Continue reading →

Read More
admin 0

A Gentle Introduction To Timeseries Similarity in nDPI (and ntopng)

Posted December 14, 2021 · Add Comment

Introduction Let’s start from the end. In your organisation you probably have thousand of timeseries of various nature: SNMP interfaces, hosts traffic, protocols etc. You would like to know what timeseries are similar as this is necessary for addressing many … Continue reading →

Read More
  • ← Previous Entries
 
  • Popular
  • Recent
  • Comments
  • Tags
  • PF_RING 6.0.3 Just ReleasedToday we have released PF_RING 6.0.3  a maintenance release that [...]
  • ntopng Deep Dive: Interview with Ivan PepelnjakLast month Ivan Pepelnjak interviewed me on Software Gone Wild [...]
  • ntop is back: ntopng 1.0 just releasedAfter 15 years since the introduction of the original ntop [...]
  • How to Configure Flow Risk Exclusions in nDPI and ntopngFlow risks are the mechanism nDPI implements for detecting issues [...]
  • How to Configure Flow Risk Exclusions in nDPI and ntopngFlow risks are the mechanism nDPI implements for detecting issues [...]
  • Best Practices for Using ntop Tools on ContainersMany people use software containers to simplify application deployment. As [...]
  • How ntopng monitors IEC 60870-5-104 trafficBusy times for OT analysts. Last month the number of [...]
  • Registration for ntopConf 2022 (June 23-24) is now OpenThis year the ntop community will meet in Milan Italy [...]
active monitoring bgp cento containers ebpf elasticsearch export flows fosdem hancitor icinga2 infection influxdb inline layer7 netflow nProbe nprobeagent ntopng performance policer release round trip time rtt security stable tcp states telemetry themes visibility
  • Browse By Date

  • Browse By Categories

    • Announce (50)
    • cento (8)
    • Components (1)
    • Cybersecurity (14)
    • Features (2)
    • Guides (11)
    • libebpfflow (1)
    • n2disk (20)
    • n2n (7)
    • nbox (7)
    • nDPI (51)
    • nEdge (6)
    • News (13)
    • nProbe (93)
    • nScrub (3)
    • ntop (101)
    • ntopng (138)
    • PF_RING (91)
    • snort (3)
    • TNAPI (11)
    • tutorials (17)
    • vPF_RING (3)
    • Webinar (15)
    • ZC (30)
 
  • Latest Posts

    • How to Configure Flow Risk Exclusions in nDPI and ntopng
    • Best Practices for Using ntop Tools on Containers
    • How ntopng monitors IEC 60870-5-104 traffic
    • Registration for ntopConf 2022 (June 23-24) is now Open
    • HowTo Use TLS for Securing Flow Export/Collection
  • Upcoming Events

    • June 23-24 - ntopConf 2022 (Milan)
© 1998-2022 ntop
ntop, ntopng, nDPI, PF_RING, nProbe, and n2disk are registered trademarks.