What is Reddit's opinion of
ntop?
From 3.5 billion Reddit comments
11 reviews of this app found across Reddit:
Ntopng Opensource
Create a span port on your cisco switch.
On your ntop box install two network interfaces. Connect eth0 to the SPAN port and configure an IP on eth1
> Monitor network traffic from time to time.
This is an awesome point, but sadly it's probably well outside the reach of most home users. Someone, somewhere, needs to develop a "show me what my network is doing and explain it in plain $nativeLanguage" application.
Ntop is a good start, but still awfully geeky for the average civilian.
- Visualware looks like it would give you most everything you need. Kinda spendy for a one-time use though. Looks like a cheaper version is available called Visualroute.
I could have sworn that was an OSS tool at some point, can't seem to find it.
and +1 for smokeping and winmtr too
How much data are you looking to capture, and are you looking to retain it? The raspberry pi will fall over if you are trying to capture any meaningful amount of data. Look at in-line taps such as NetOptics, and hand off the tapped traffic to a capture box or tap aggregator (Arista, NetOptics, etc can do this). Spanning ports is a cheaper option, but you're limited to the # of span sessions, and burn a switch port for the output.
Netflow is probably a reasonable compromise for what you're trying to do, if your devices support it. You can use a free collector like ntop, and see how that works out.
If you have real budget, and need truly deep insight, look at something like Corvil or Emulex/Endace. You'll pay out the nose for solutions like this.
Bandwidth: http://www.ntop.org/products/ntop/
Or build something yourself, feed data to InfluxDB and graph it with Grafana (one of the slickest Graph dashboards around right now)
Zabbix is another option for general monitoring/graphing
Hi, sorry I now realise your question is completely different from the one I posted a solution! A comprehension fail on my part. Netflow/TraficFlow should work if you want to try that?
http://wiki.mikrotik.com/wiki/Manual:IP/Traffic_Flow
http://www.ntop.org/products/ntop/
http://www.manageengine.com/products/netflow/download-free.html
- Wireshark. http://www.wireshark.org/download.html Network packet analyzer. Shows which apps are downloading how much over your network connection. Filter packets, colorize packets, capture and save packets. For Unix and Windows.
- NTOP. http://www.ntop.org/products/ntop/ Monitor network usage by process.
What OS do you need this for?
Do you have anything that can export Netflow? (or one of the other vendors version of it) There are a few open source/free applications out there to view the data.
ntop (http://www.ntop.org/products/ntop/) is one that I've used that seems to work well. If you don't have anything that can send flows, you could maybe mirror your wan port and dump it to ntop.
NTop is a network traffic probe. Once installed, via it's web interface, you view the most common websites, see how much bandwidth they are using, and which internal users are accessing them. You can also view this same data for any internet traffic (Windows Updates, Virus updates, etc).
You can put an NTop box in the path of your traffic and have it capture/bridge with two NICs or you can export the information via Netflow from your switch/router/ASA.