Re: [Ntop] nProbe dropping packets

Sure, Alfredo. I thought it was my mistake to open in github. That's the reason I wrote to the mailing list. I have updated the ticket on github. Thanks and Regards, -=Srijan Nandi On Wed, 18 Sep 2019 at 12:52, Alfredo Cardigliano wrote: > Hi Srijan > please keep posting in a s

[Ntop] nProbe dropping packets

Thanks and Regards, -=Srijan Nandi ___ Ntop mailing list Ntop@listgateway.unipi.it http://listgateway.unipi.it/mailman/listinfo/ntop

Re: [Ntop] WARNING: Missing support for F-TEID interface type 0x1C

Can anyone please help me with GTP v1 and GTP v2 traffic. I am really at a fix. On Wed, 11 Sep 2019 at 15:40, Srijan Nandi wrote: > My nprobe.conf looks like this: > > # > -g=/var/run/nprobe.pid > # > -G= > # > -i=anic:0 > # > -n=none > # > # -3|--

Re: [Ntop] Help configuring nProbe with ntopng

ileBeat to read those text > files and do the necessary downstream processing. > > Alternatively, you can directly push to ElasticSearch straight from > nProbe. In this case you will need the nProbe export plugin and use > option --elastic. > > Simone > > > > On 10 Se

Re: [Ntop] WARNING: Missing support for F-TEID interface type 0x1C

\ %GTPV2_ULI_MCC \ %GTPV2_ULI_MNC \ %GTPV2_ULI_CELL_TAC \ %GTPV2_ULI_CELL_ID \ %GTPV2_RESPONSE_CAUSE --zmq=tcp://*:5556 --cpu-affinity=0,1,2,3,4,5 On Wed, 11 Sep 2019 at 13:42, Srijan Nandi wrote: > Hello Guys, > > Suddenly I am getting the following message with nProbe and GTPv2 plugin

[Ntop] WARNING: Missing support for F-TEID interface type 0x1C

[gtpv2Plugin.c:580] WARNING: Missing support for F-TEID interface type 0x14 -- -=Srijan Nandi ___ Ntop mailing list Ntop@listgateway.unipi.it http://listgateway.unipi.it/mailman/listinfo/ntop

Re: [Ntop] Help configuring nProbe with ntopng

data from nProbe and then log them to a disk and export it to logstash and elasticsearch. -=Srijan Nandi On Tue, 10 Sep 2019 at 22:56, Alfredo Cardigliano wrote: > Hi > you should not use the accolade adapter for exporting flow data to ntopng, > that’s for > capturing raw packets only

[Ntop] Help configuring nProbe with ntopng

am not able to figure out how to use zmq in the nprobe config file and utilise the same in the ntopng config file. -- -=Srijan Nandi ___ Ntop mailing list Ntop@listgateway.unipi.it http://listgateway.unipi.it/mailman/listinfo/ntop

Re: [Ntop] Assistance with nProbe with Accolade Cards

them through an application that can read pcap's (like tcpdump or suricata) and then push it to elasticsearch. Thanks and regards, -=Srijan Nandi On Tue, 10 Sep 2019 at 20:49, Alfredo Cardigliano wrote: > Hi > please check https://www.ntop.org/guides/pf_ring/modules/accolade.html for

[Ntop] Assistance with nProbe with Accolade Cards

section of the nprobe.conf file. Also I need to see the entire IP packet after it has been parsed by nProbe. I need to dump the file in the local disk as well. I will be more than happy to provide more information if required. Thanks and Regards, -=Srijan Nandi