Practical Network Security: Experiences with NTOP
Luca Deri, Finsiel S.p.A and University of Pisa and Stefano Suin, University of Pisa, Italy
As networks become large and heterogeneous, network administrators need efficient tools for monitoring network activities and enforcing global security. In open environments such as universities and research organisations it is rather difficult to prevent access to core network resources without restricting user's freedom.
NTOP is an open-source web-based traffic measurement and monitoring application written by the authors and widely used over the Internet. This paper shows how NTOP can also be effectively used for network security as it is able to identify potential intruders and security flaws, as well as discover misconfigured or faulty applications that generate suspicious traffic.
Full Paper (HTML) (PDF - 36KB) - Slides (99KB)