Powerful threat prediction, prevention, detection, and response along with compliance in a scalable, simple managed solution.
All-in-one networking solution that combines network connectivity, agility, security, and compliance in an affordable managed solution.
Accelerate business growth through our award-winning partner program.
Applies to: Ntopng v4.2 and later
Ntopng is the next-generation version of the original ntop. It is a passive network monitoring tool, focused on flows and statistics that can be obtained from the traffic captured by the server.
Ntopng log integration with EventTracker can be achieved via syslog. Ntopng sends events information like alerts and web traffic activities. EventTracker generates detail reports for suspicious traffic activities. Its graphical representation shows web traffic activities, source IP address, destination IP address, top accessed URL, etc.
EventTracker triggers alerts in the event when suspicious traffic is detected by Ntopng.
Once Ntopng is configured to deliver events to EventTracker, then alerts, dashboards, and reports can be configured into EventTracker.
The configuration details in this guide are consistent with EventTracker version 9.2 and later, Ntopng v4.2 and later.
To configure Ntopng to send logs to EventTracker, refer the How-to Guide.
For more information, please refer the Ntopng Integration guide.