Re: [Ntop-misc] PF_RING 6.4.1/6.5.0 Not respecting BPF filtering?

Hi Jason there is a workaround for this, please check latest dev packages and let me know. Thank you Alfredo > On 19 Jan 2017, at 18:45, Alfredo Cardigliano wrote: > > Hi Jason > I think this this due to libpcap which is activating the socket before > setting the bpf

Re: [Ntop] usage report

I must be missing something in your explanation or I’m not communicating my issue. In Pro mode, I do see “Report” under Home but within that report selection, I do NOT see where I can generate a report for a list of each local host’s total data usage and sort it by a date range and/or data

Re: [Ntop-misc] PF_RING 6.4.1/6.5.0 Not respecting BPF filtering?

Hi Jason I think this this due to libpcap which is activating the socket before setting the bpf filter, thus you receive packets in that window. I am trying to avoid this somehow. Jason > On 19 Jan 2017, at 17:58, Jason wrote: > > Good day all, > > Yesterday I discovered a

[Ntop-misc] PF_RING 6.4.1/6.5.0 Not respecting BPF filtering?

Good day all, Yesterday I discovered a problem on Ubuntu 16.04.1 (kernel 4.4.0-59) and I'm hoping someone can help make sense of it. Both 6.4.1 and 6.5.0 (vanilla) do not seem to be honoring BPF filters. In the below example, you can see I'm filtering for only port 22 packets and piping that

Re: [Ntop] usage report

Dear Dave, The Professional version of ntopng contains a report module that allows you to print reports that include top hosts and all the information you mentioned. ntopng, by default, starts in professional mode and stays in that mode for the first 10 minutes of execution. This should enable

Re: [Ntop-misc] How to get separate traffic statistic by collector interface

> Hi Frederic, > The latest ntopng dev build allows you to create virtual interfaces on the > basis > of the ingress flow interface. You just have to visit the preferences page > (Expert View), tab "Network Interfaces", and enable "Ingress Flow Interfaces". > This should do the trick. Hi

Re: [Ntop-misc] Compile PF_RING 6.4.1 from source to rpm

Hi Josh libpfring.so should be actually installed under /usr/local/lib using our RPMs. Anyway you can build your rpm with the commands below: $ cd PF_RING/package/rpm/ $ ./configure $ make build-rpm Alfredo > On 19 Jan 2017, at 06:48, Josh wrote: > > All, > > Any