What's new:
- SQL support removed
- rrd support added
- Added ability to configure plugins while inactive.
- Added @<filename> for configuration options.
- Table driven conversion of ip address -> country code replaces
- where available - old gTLD/ccTLG version.
- memory failure trap, allows access to reports after ntop stops
and run time parameter, --disable-stopcap to return to old
behavior.
- Replaced active use of nmap with passive use of ettercap
for OS fingerprinting.
- Automatic creation of problem report skeleton.
- Plugins menu shows plugins disabled due to problems.
- Default protocol list (if no -p option) changed
There is document describing the changes, but there seem to be a number of
features added, including support for graphing with RRD.
Note: The web server currently hangs, but this is the same behavior as 2.1.0.
This is an updated and cleaned up version of the older ntop2 package.
ntop version 2 is a tool to sniff traffic on the network and display
statistics about it. It has a built-in web server for displaying the
results of the data it collects, and it can also generate data in
various formats (such as NetFlow) to be passed on to other systems.
Note that version 2 of ntop is significantly different from version 1.
It is much larger and has many more features. If you're looking for a
more light-weight tool, you may find that version 1 (the "ntop" package)
suits you better.
Differences from the previous version:
+ multi-threading has been enabled (it wouldn't compile otherwise)
+ dependencies have been specified properly
+ the Makefile has been cleaned up
+ two bugs in the configure script have been fixed
+ we now use a distfile that can be found
+ the homepage is the official ntop homepage
+ it appears that the editline emulation of GNU readline is sufficient
This is an updated and cleaned up version of the older ntop2 package.
ntop version 2 is a tool to sniff traffic on the network and display
statistics about it. It has a built-in web server for displaying the
results of the data it collects, and it can also generate data in
various formats (such as NetFlow) to be passed on to other systems.
Note that version 2 of ntop is significantly different from version 1.
It is much larger and has many more features. If you're looking for a
more light-weight tool, you may find that version 1 (the "ntop" package)
suits you better.
Differences from the previous version:
+ multi-threading has been enabled (it wouldn't compile otherwise)
+ dependencies have been specified properly
+ the Makefile has been cleaned up
+ two bugs in the configure script have been fixed
+ we now use a distfile that can be found
+ the homepage is the official ntop homepage
+ it appears that the editline emulation of GNU readline is sufficient
