Yes, I like session info. Not "crippled" without session, still much useful info, but my system was crashing ALL the time. Luca said he needs to rewrite the entire session handling block. Not sure if it's done yet, but I'd rather have my system stable and have most of the info I need than have to restart the ntop instance every 15 mins and lose all the memory only data!
G -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of James Chase Sent: Wednesday, September 16, 2009 1:42 PM To: [email protected] Subject: Re: [Ntop] Maximum Number of TCP Sessions Reached (32768) Haven't seen any segfaults -- other random messages that hint at memory problems but that seems likely as we are close to using our 1GB of RAM. Wouldn't disabling sessions really cripple the usefulness of ntop? This is the most detail I could see about my version of ntop ntop v.3.3.11-dev Configured on Aug 27 2009 16:41:04, built on Aug 27 2009 16:42:19. On 9/16/2009 2:28 PM, Gary Gatten wrote: > If you have the free memory, increase it. And yes, you can tweak the > timers, but I think you'll need to recompile. > > I currently have address resolution and sessions disabled due to > frequent segfaults. Are you running the latest from SVN? What's its > version info? > > -----Original Message----- > From: [email protected] [mailto:[email protected]] On Behalf Of > James Chase > Sent: Wednesday, September 16, 2009 1:24 PM > To: [email protected] > Subject: [Ntop] Maximum Number of TCP Sessions Reached (32768) > > I've been getting this a lot lately. We are using the default of > (32768). We do see a lot of hosts but is there a good resolution for > this, or should I just ignore it? > > Can you set ntop to purge idle hosts more frequently, or is it safe to > add more RAM and change the maximum number of TCP sessions allowed? Is > the stability of ntop affected at all when maintaining information about > > too many hosts? > > By the way -- the dev version of ntop does not appear to have webserver > crashes in CentOS/RHEL environments like the current stable version > does. FWIW > > Thanks > > _______________________________________________ > Ntop mailing list > [email protected] > http://listgateway.unipi.it/mailman/listinfo/ntop > > > > > > <font size="1"> > <div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'> > </div> > "This email is intended to be reviewed by only the intended recipient > and may contain information that is privileged and/or confidential. > If you are not the intended recipient, you are hereby notified that > any review, use, dissemination, disclosure or copying of this email > and its attachments, if any, is strictly prohibited. If you have > received this email in error, please immediately notify the sender by > return email and delete this email from your system." > </font> > > _______________________________________________ > Ntop mailing list > [email protected] > http://listgateway.unipi.it/mailman/listinfo/ntop > _______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop <font size="1"> <div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'> </div> "This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system." </font> _______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
