PF_RING – ntop

How to Dump, Index, and Layer-7 Filter Network Traffic at High Speed

Posted September 17, 2020 · Add Comment

n2disk is an application that many of the ntop community uses to dump traffic up to 100 Gbit. What few people know is that n2disk can index data not just using packet header information (i.e. IP, port. VLAN, MAC…) but … Continue reading →

Introducing PF_RING ZC support for Intel E810-based 100G adapters

Posted August 24, 2020 · Add Comment

Last year Intel announced a new family of 100 Gigabit network adapters, code-name Columbiaville. These new adapters, based on the new Intel Ethernet Controller E810, support 10/25/50/100 Gbps link speeds and provide programmable offload capabilities. Programmability 800 Series adapters implement … Continue reading →

Introducing PF_RING Configuration Wizard

Posted June 30, 2019 · Add Comment

Getting started with PF_RING can be a bit tricky as it requires the creation of a few configuration files in order to setup the service, especially when ZC drivers need to be used. First of all it requires packages installation: … Continue reading →

Introducing PF_RING 7.4: PF_RING FT, Containers and Virtual Functions Support

Posted December 21, 2018 · Add Comment

This is to announce a new PF_RING major release 7.4. This release includes many improvements to the PF_RING FT library, which is now more mature thanks to new API functionalities and features that provide more flexibility. This release also addresses many … Continue reading →

How to accelerate Bro with PF_RING FT

Posted July 29, 2018 · Add Comment

We discussed many times about the large quantity of work IDSs have to carry on, and the high CPU load they require, this is the case of Suricata due to the thousands of rules that need to be evaluated for … Continue reading →

How to accelerate Suricata, Bro, Snort with PF_RING FT

Posted June 12, 2018 · Add Comment

In a previous post we discussed the advantages of using specialized adapters featuring flow offload in hardware for accelerating IDS applications. What we have learnt is that IDSs are typically CPU-bound applications, and this is mainly caused by the thousands of rules that … Continue reading →

Introducing nBroker: Traffic Steering and Filtering on Intel RRC (FM10K)

Posted May 17, 2018 · Add Comment

Exactly two years ago we introduced Intel FM10K (FM10000) support in PF_RING ZC. The Intel FM10K ethernet controller family supports 10/25/40/100 Gbit on the same NIC, at a convenient price (sub 1000$ range) and it powers NIC various models manufactured by Silicom … Continue reading →

Introducing PF_RING FT: nDPI-based Flow Classification and Filtering for PF_RING and DPDK

Posted May 16, 2018 · Add Comment

Motivation Most network monitoring and security applications are based on flow processing, which is in practice the activity of grouping packets based on common attributes (e.g. source and destination IP, source and destination port, protocol, etc.) and do some analysis based … Continue reading →

Introducing PF_RING 7.0 with Hardware Flow Offload

Posted October 20, 2017 · Add Comment

This is to announce a new PF_RING major release 7.0. In addition to many improvements to the capture modules, drivers upgrades, containers isolation, the main change of this release is the ability to offload flow processing to the network card … Continue reading →

PF_RING 6.6 Just Released

Posted April 25, 2017 · Add Comment

After almost one year of development, this is to announce the release of PF_RING 6.6. In this release we have worked on different areas: Introduced nBPF, a software packet-filtering component similar to BPF, that is able to exploit hardware packet … Continue reading →

Browse By Date
Browse By Date
Browse By Categories
- Announce (44)
- cento (6)
- Components (1)
- Cybersecurity (4)
- Features (2)
- Guides (10)
- libebpfflow (1)
- n2disk (20)
- n2n (7)
- nbox (7)
- nDPI (41)
- nEdge (6)
- News (12)
- nProbe (76)
- nScrub (2)
- ntop (90)
- ntopng (111)
- PF_RING (88)
- snort (3)
- TNAPI (11)
- tutorials (13)
- vPF_RING (3)
- ZC (30)