[vc_row full_width=”stretch_row” css=”.vc_custom_1517935123492{margin-top: 60px !important;}”][vc_column css=”.vc_custom_1517934917814{margin-bottom: 30px !important;}”]
ntopng High-Speed Web-based Traffic Analysis and Flow Collection
[vc_separator border_width=”2″ el_width=”60″ css=”.vc_custom_1519394024381{margin-top: -20px !important;}”][vc_row full_width=”stretch_row”][vc_column width=”1/2″][vc_gallery type=”nivo” interval=”0″ images=”16932,16938,16914,16907,15180″ img_size=”600×480″ onclick=””][/vc_column][vc_column width=”1/2″]ntopng is the next generation version of the original ntop, a traffic probe that monitors network usage. ntopng is based on libpcap and was written in a “light” way to be able to run virtually on every Unix, MacOSX platform and even on Windows.
ntopng provides an intuitive and encrypted web user interface for the exploration of traffic information in real time and history.[vc_row full_width=”stretch_row” css=”.vc_custom_1522840736174{margin-bottom: -35px !important;padding-bottom: 40px !important;background-color: #f4f4f4 !important;}”]JTVCYWRyb3RhdGUlMjBiYW5uZXIlM0QlMjIzJTIyJTVE[karma_builder_tab_3 animate=”animate_none” karma_builder_note=”” menu_bg_color=”#e5e5e5″ link_color=”#3a3a3a” link_color_hover=”#ffffff” link_color_active=”#ffffff” tab_bgcolor_hover=”#acd134″ tab_bgcolor_active=”#acd134″ tab_border_color=”#e5e5e5″][karma_builder_tab_3_content tab_active=”yes” nav_tab_title=”Hardware” type=”fontawesome” icon_fontawesome=”fa fa-hdd-o”]
Hardware
[/karma_builder_tab_3_content][karma_builder_tab_3_content tab_active=”yes” nav_tab_title=”Main Features” type=”fontawesome” icon_fontawesome=”fa fa-list”]
Main Features
- Sort network traffic according to many criteria including IP address, port, L7 protocol, throughput, Autonomous Systems (ASs)
- Show realtime network traffic and active hosts
- Produce long-term reports for several network metrics including throughput and application protocols
- Top talkers (senders/receivers), top ASs, top L7 applications
- Monitor and report live throughput, network and application latencies, Round Trip Time (RTT), TCP statistics (retransmissions, out of order packets, packet lost), and bytes and packets transmitted
- Store on disk persistent traffic statistics to allow future explorations and post-mortem analyses
- Geolocate and overlay hosts in a geographical map
- Discover application protocols (Facebook, YouTube, BitTorrent, etc) by leveraging on nDPI, ntop Deep Packet Inspection (DPI) technology
- Characterise HTTP traffic by leveraging on characterisation services provided by Google and HTTP Blacklist.
- Analyse IP traffic and sort it according to the source/destination.
- Report IP protocol usage sorted by protocol type
- Produce HTML5/AJAX network traffic statistics.
- Full support for IPv4 and IPv6
- Full Layer-2 support (including ARP statistics)
- GTP/GRE detunnelling
- Support for MySQL, ElasticSearch and LogStash export of monitored data
- Interactive historical exploration of monitored data exported to MySQL
- Alerts engine to capture anomalous and suspicious hosts
- SNMP v1/v2c support and continuous monitoring of SNMP devices
[/karma_builder_tab_3_content][karma_builder_tab_3_content tab_active=”no” nav_tab_title=”Available Versions” type=”fontawesome” icon_fontawesome=”fa fa-table”]
| Feature | Community | Professional | Enterprise |
|---|---|---|---|
| Monitor the active flows and hosts of your network † | ✓ | ✓ | ✓ |
| Identity application protocols (Facebook, Youtube, BitTorrent, etc) in the network | ✓ | ✓ | ✓ |
| Record and Visualize hosts’ historical applications protocols usage | ✓ | ✓ | ✓ |
| Group hosts by VLAN, Operating System, Country, and Autonomous Systems | ✓ | ✓ | ✓ |
| Get a geographic map of your network communications with the rest of the world | ✓ | ✓ | ✓ |
| Identify top talkers (senders and receivers) hosts with minute resolution | ✓ | ✓ | ✓ |
| Visualize the top HTTP sites contacted by an host | ✓ | ✓ | ✓ |
| Export expired flows information to MySQL, possibly augumented with nProbe data | ✓ | ✓ | ✓ |
| Generate alerts when hosts cross configurable time/traffic thresholds or have suspicious behaviors | ✓ | ✓ | ✓ |
| Get alerts notifications as Slack messages | ✓ | ✓ | ✓ |
| Split, merge, and visualize VLAN based traffic | ✓ | ✓ | ✓ |
| Collect data from nProbe to treat remote nProbe-monitored interfaces and flow exporter devices (for example routers and switches) as if they were local | ✓ | ✓ | ✓ |
| Split, merge, and visualize data collected from nProbe | ✓ | ✓ | ✓ |
| Group local hosts into logical sets of IP and MAC addresses known as host pools †† | ✓ | ✓ | ✓ |
| Get a realtime view of top talkers and application protocols and compare them with daily activities | ✗ | ✓ | ✓ |
| Explore recorded MySQL data to identify the cause of network problems | ✗ | ✓ | ✓ |
| Generate graphical reports with top hosts, application protocols, countries, networks, and autonomous systems within any configurable time frame | ✗ | ✓ | ✓ |
| Mark and historicise traffic with user-defined traffic profiles to match hosts, ports and applications using the BPF syntax ‡ | ✗ | ✓ | ✓ |
| Limit or block your hosts’ traffic with customized per-protocol policies * | ✗ | ✓ | ✓ |
| Integrate ntopng login with LDAP authentication servers | ✗ | ✓ | ✓ |
| Send ntopng generated alerts to nagios * | ✗ | ✓ | ✓ |
| Query SNMP devices data, such as port status, traffic and and MAC address information | ✗ | ✗ | ✓ |
| Advanced MySQL insertions yielding 5x faster database writes | ✗ | ✗ | ✓ |
| Optimized MySQL aggregations for faster historical flow data explorations | ✗ | ✗ | ✓ |
| Get total traffic and activity reports for any given host, network, or interface | ✗ | ✗ | ✓ |
| Identify attackers and victims through an alerts dashboard in realtime and in the past | ✗ | ✗ | ✓ |
| Visualize host pools’ historical applications protocols usage | ✗ | ✗ | ✓ |
| Explore and filter flow alerts in the past | ✗ | ✗ | ✓ |
| Visualize and historicise SNMP per-device-port traffic | ✗ | ✗ | ✓ |
| Visualize and historicise NetFlow/sFlow devices data | ✗ | ✗ | ✓ |
| Provide an Internet Captive Portal * | ✗ | ✗ | ✓ |
| Apply per-protocol daily traffic and time quotas to your clients * | ✗ | ✗ | ✓ |
| Provide accurate parental control with SafeSearch DNS integration * | ✗ | ✗ | ✓ |
[/karma_builder_tab_3_content][karma_builder_tab_3_content tab_active=”no” nav_tab_title=”Download” type=”fontawesome” icon_fontawesome=”fa fa-download”]
Download
[/karma_builder_tab_3_content][karma_builder_tab_3_content tab_active=”no” nav_tab_title=”Guide” type=”fontawesome” icon_fontawesome=”fa fa-book”]
Guide
[/karma_builder_tab_3_content][karma_builder_tab_3_content tab_active=”no” nav_tab_title=”Compare” type=”fontawesome” icon_fontawesome=”fa fa-certificate”]
Compare
[/karma_builder_tab_3_content][karma_builder_tab_3_content tab_active=”no” nav_tab_title=”Buy” type=”fontawesome” icon_fontawesome=”fa fa-eye”]
To see the list of all the products that can be purchased, access our e-commerce: www.miniserver.it
For the public administration: we are present on the MEPA portal, for info send an email to info@firewallhardware.it or call the number 011 19827159.[/karma_builder_tab_3_content][/karma_builder_tab_3]
