[Ntop] Newb Question - adding protocols and filtering them

Tim Weid Tim.Weid at QCSI.com
Wed Mar 30 16:10:42 CEST 2005 

The product is already installed with the defaults and is running.  My
problem is that the majority of my traffic is coming up as IP "other".
I believe this is MAPI traffic (RPC TCP 135) and streaming apps.  Can I
modify the listed protocols after installation?  Since it runs as a
service I figured I could edit the default file and restart the service
to pick up the changes/

 

  _____  

From: ntop-bounces at unipi.it [mailto:ntop-bounces at unipi.it] On Behalf Of
Burton Strauss
Sent: Wednesday, March 30, 2005 6:59 AM
To: ntop at Unipi.IT
Subject: RE: [Ntop] Newb Question - adding protocols and filtering them

 

Actually, the only marginal part is not explicitly telling us you're
running Windows.

 

Read the docs (esp. the man page) and you'll see mostly the UNIX
parameters.  You need to understand that ntop for windows runs as a
service and so the command line parameters are for configuring that.
ThHere is special handling of the 'command line' parameters.  Quoting
docs/FAQ:

	Q. ntop -i1 ... doesn't work
	A. ntop has special parameters under Win32

	 

	         Under win32 there are TWO COMPLETELY SEPARATE TYPES OF
PARAMETERS.

	 

	     There are the parameters to the win32 stub AND there are
parameters to ntop
	     itself.

	 

	     AFTER THE win32 parameters are the ntop parameters in the
standard (Unix)
	     -xxx format.

	 

	         ntop /c <normal parms>  runs ntop INTERACTIVELY with
the specified ntop
	         parameters

	 

	         ntop /i <parameters> installs ntop as a service to run
with the specified parameters

	 

	         ntop /d deletes the ntop service

	 

	   Remember, ntop /i and ntop /d don't actually run the service
- you need to
	   start it.

 

So, the correct syntax is

 

ntop /c -p c:\lists.txt

 

or

 

ntop /i -p c:\lists.txt

 

-----Burton

 

 

  _____  

From: ntop-bounces at unipi.it [mailto:ntop-bounces at unipi.it] On Behalf Of
Tim Weid
Sent: Wednesday, March 30, 2005 7:35 AM
To: ntop at Unipi.IT
Subject: [Ntop] Newb Question - adding protocols and filtering them

Just bought NTOP and need to add some protocols.  I have tried using the
list but I get syntax errors.  I really need to track streaming
protocols, and MAPI clients.

 

I use:

 

Ntop -p c:\lists.txt 

 

And all I get is the error

 

What is the correct syntax and where is the default folder location?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://listgateway.unipi.it/pipermail/ntop/attachments/20050330/c695ab1f/attachment.htm

More information about the Ntop mailing list