06. 05. 2024
Unified Monitoring
Every now and then I like to keep you up to date about news in the ntop environment.
This time it’s not news about analysis methods or software, but about a new hardware solution.
If you’re someone looking for a hardware-based, scalable, optimized, and purpose-built solution, without the hassle of software installation, chances are you’re an nBox user. The nBox Mini is a cost-effective, compact appliance tailor-made for high-speed traffic analysis and flow collection. It comes equipped with ntopng (and optionally nProbe) and is effortlessly managed through the built-in web interface.
The nBox Mini appliance comes with 4x 1 GbE or 2.5 GbE interfaces, including:
- A management interface to administer the box, access the Web interface for traffic analysis, and optionally collect Netflow data
- A capture interface to monitor the Mirror or SPAN port from your switch
- A bridge with 2 interfaces to deploy the appliance inline as a bump in the wire (transparent bridge) and avoid additional TAP devices
With the nBox Mini, you’re set up for the essential ntop functions of network analysis:
- Real-time traffic analysis
- Cybersecurity
- Persistent traffic statistics
- Geolocation of hosts
- Flexible alerts
- Behavioral traffic analysis
- nBox UI
Conclusion
The nBox Mini is optimal for use in small network environments with a maximum of 1 GBit mirror ports. For larger networks with mirrored ports over 1 Gbit and a large number of connections, a normal nBox must be used for optimal analysis.
Personally, I also see the nBox Mini being used as a probe. By that I mean a small device that creates the flows for me in a remote location and sends them to my central nBox.
These Solutions are Engineered by Humans
Did you read this article because you’re knowledgeable about networking? Do you have the skills necessary to manage networks? We’re currently hiring for roles like this as well as other roles here at Würth Phoenix.
Tobias Goller
NetEye Solution Architect at Würth Phoenix
I started my professional career as a system administrator.
Over the years, my area of responsibility changed from administrative work to the architectural planning of systems.
During my activities at Würth Phoenix, the focus of my area of responsibility changed to the installation and consulting of the IT system management solution WÜRTHPHOENIX NetEye.
In the meantime, I take care of the implementation and planning of customer projects in the area of our unified monitoring solution.
Author
Latest posts by Tobias Goller
25. 10. 2024
Log-SIEM
Enhancing Cybersecurity with Elastic Defend: A Technical Consultant’s Perspective
28. 08. 2024
Unified Monitoring
ntopng Updates
06. 05. 2024
Unified Monitoring
QUIC, What’s That?