<div>
Thank you for your response.<br />
<br />
Reading the ntop.org site, I'm confused: I need both ntopng and nprobe?
</div>


Thank you for your response.

Reading the ntop.org site, I'm confused: I need both ntopng and nprobe?

<div>
Yes, you would need nprobe to work with sflow with ntopng.
</div>


Yes, you would need nprobe to work with sflow with ntopng.

<div>
<div class="content wysiwyg-content">
I have several sflow-capable switches and I would like to be able to get live and historical data on traffic.<br />
<br />
Requirements:<br />
- must run on Linux<br />
- has alerting capabilities for DDOS attacks (email or SNMP)<br />
- has an easy to use reporting tool for top destinations, most bandwidth used by IP or source, etc. <br />
- trend analysis would be nice, if not at least capable to store the data in a database so I can extract the data.<br />
<br />
Right now I'm trying out Sflow Trend, but I'm not impressed.<br />
<br />
Please post if you have experience with the solution you recommend. If you found it via a web search... I can use Google too :)<br />
<br />
Thank you.
</div>
</div>


I have several sflow-capable switches and I would like to be able to get live and historical data on traffic.

Requirements:
- must run on Linux
- has alerting capabilities for DDOS attacks (email or SNMP)
- has an easy to use reporting tool for top destinations, most bandwidth used by IP or source, etc. 
- trend analysis would be nice, if not at least capable to store the data in a database so I can extract the data.

Right now I'm trying out Sflow Trend, but I'm not impressed.

Please post if you have experience with the solution you recommend. If you found it via a web search... I can use Google too :)

Thank you.

Sflow analyzer/alerter

IT Administration is the processes and best practices for programming and development, and incorporates methodologies for managing activities and projects. Common methodologies include waterfall, prototyping, iterative and incremental development, spiral development, rapid application development, extreme programming and various types of agile methodology. The life-cycle "model" is a more general term for a category of methodologies, and a software development "process" a more specific term to refer to a specific process chosen by a specific organization.

IT Administration

Network analysis is the process of identifying and remediating the processes and systems within a network, including performance, connectivity and security. The process is performed through the use of tools developed for monitoring and analyzing network activity. Network problems that involve finding an optimal way of doing something are studied under the name combinatorial optimization. Examples include network flow, shortest path problem, transport problem, transshipment problem, location problem, matching problem, assignment problem, packing problem, routing problem, Critical Path Analysis and PERT (Program Evaluation & Review Technique).

Network Analysis

A switch is a device that filters and forwards packets of data between LAN segments. Switches operate at the data link layer or the network layer of the Open Systems Interconnection (OSI) Reference Model and therefore support any packet protocol. LANs that use switches to join segments are called switched LANs or, in the case of Ethernet networks, switched Ethernet LANs. A hub is a connection point for devices in a network. Hubs are commonly used to connect segments of a LAN. A hub contains multiple ports; when a packet arrives at one port, it is copied to the other ports so that all segments of the LAN can see all packets.

Switches / Hubs

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.

Routers

Network Management involves issues that are independent of specific hardware or software, including email policies, upgrade planning, backup scheduling and working with managed service providers for Desktop-As-A-Service (DaaS), Software-As-A-Service (SaaS) and the like through the use of tools, coupled with manufacturer standards, best practice guidelines, policies and procedures plus all other relevant documentation. Network management also includes monitoring, alerting and reporting, management reporting, planning for device or service updates, the backup of configurations, the setting of key performance indicators and measures (KPIs/KPMs), associated service level agreements and problem records as part of the IT Service Management (ITSM) framework.