Download nProbe User`s Guide
Transcript
nProbe User’s Guide v.6.16 When nprobe drops privileges (unless --dont-drop-privileges is used) the user nobody is used. It is possible to use another user by using this option. --disable-cache nProbe implements a flow cache for merging packets belonging to the same flow. In proxy/collector mode, nProbe can disable this feature so that incoming flows are not put in cache but immediately exported. --redis <host>[:<port>] The redis database (when nProbe is compiled with it) is used to implement a data cache and for aggregating flow information. This option specifies the host (and optionally the port) where redis is listening. nProbe opens several connections to redis (not just one) in order to maximize performance. --ucloud This option enables the micro-cloud concept. Please refer to http://www.ntop.org/ nprobe/monitoring-on-the-microcloud/ for more information. --show-system-id Shown the systemId where nProbe is running (for binary nProbe’s only). --check-license Checks if the configured license is valid (for binary nProbe’s only). --dump-plugin-families Dump installed plugin family names. ! As some people prefer to have a configuration file containing the options that otherwise would be specified on the command line, it is also possible to start nProbe as follows: ! nprobe <configuration file path> where the configuration file contains the same options otherwise specified on the command line. The only difference between the command line and the configuration file is that different options need to be specified on different lines. For instance: ! ! nprobe —n 127.0.0.1:2055 —i en0 —a -p is the same as: nprobe /etc/nprobe.conf ! where /etc/nprobe.conf contains the following lines: ! ! # cat /etc/nprobe.conf -n=127.0.0.1:2055 -i=en0 -a= -p= ! Note that flags with no parameter associated (e.g. —a) also need to have ‘=’ specified. Any standard NetFlow collector (e.g. ntop) can be used to analyze the flows generated by nProbe. When used with ntop, the nProbe can act as a remote and light traffic collector and !17