Hello! I am following up on last week's message. I am trying to determine how I can troubleshoot nDPI, what logs I can check, etc. My PCAP file doesn't appear to have any errors when I review it in Wireshark. If someone could offer some suggestions of what to try, I would appreciate it.
Thanks, Mark *Previous message:* *Hello, I am running Ntop 5.0.1 that I've compiled to run on my system (x86_64-3.5.0-23-generic-linux-gnu [64 bit]), the most stable version. From looking at the Information page I can see that I am running GeoOP Version GEO-533LITE 20090701 Build 1 and AS Version GEO-117 20090321 Build 1. I am attempting to identify traffic that I've already captured and stored on pcap files, however 95% of the output displays as Unknown protocol. I have checked the configuration.log and I haven't seen any problems during the compiling phases, and the ndpi directory has files in it. I haven't noticed any smoking guns during the installation. So how can I confirm that the deep protocol inspection is actually running/working? I don't see it listed as a plugin. Thanks, Mark*
_______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
