Hi,
I recently installed ntopng 2.3 on debian wheezy following this <https://terminal28.com/ntopng-ntop-web-based-network-traffic-monitoring-sys tem-linux-debian/> article, the install was successful and all is running well. I just have a few quick questions. 1. How and where does ntopng store the flow data. As part of the install instructions, the article had me install redis-server. Is that where the data is stored (in my instance)? What im essentially looking for is the ability to search historical data using various criteria's. It seems like the only native search options are "search host", and the host/nic "timeframe". What if I wish to search for is specific flows, specific time ranges and perhaps generate reports. I saw an ntop article <http://www.ntop.org/ntopng/exploring-historical-data-using-ntopng/> describing the option of exploring historical data, its mentioning that it only supports MySQL, which I guess isn't going to work for me? And just so I understand this, when this is enabled, then historical data is dumped to the db, and the web interfaces exposes a new search feature to search the historical data? Is the "data retention" setting in "preferences" referring to this? 2. In my setup, for how long does it keep the data such as the "timeframe? Is it configurable? 3. Is it possible to have ntop centrally collect flows from NAT devices to one central server. Meaning, the device sending the flows (e.g. the debian server) are behind the firewall, but all flows are sent to one server in the cloud. The server in the cloud cant access the device behind the firewall 4. If it is possible, will I be able to sort the traffic by the originating device? What would I need to run on the Linux boxes sending the flows, I assume not the full ntopng and the db backend? is this where I would use nrobe? 5. Is it possible to have ntopng email alerts? If not, where can I see alerts? Joseph Joseph Ostreicher | President Compu Solutions USA E. <mailto:[email protected]> [email protected] | O. 718-475-1575 Ext 201 | F. 718-475-1570 W. http://compusolutions.us
_______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
