nprobe and timeseries

[MobzySolo]

Hello, We want to use nprobe to collect the sflow of our swichs. The goal is the following:

• Use nprobe in collector mode,
• To put in database the flows,
• Use Grafana to interogate the database,
• Do not use ntopng.

We installed the clickouse database and configured nprobe to perform a dump into the database. Unfortunately, I only get counters and the timeseries are not recorded in it. For this we have to go through ntopng and use influxdb ? can't nprobe do this operation independently from ntopng ?

Thanks for clarifying.

Nprobe.conf configuration : -i=none --collector-port=2055 -n=none -T=-T=%IPV4_SRC_ADDR %L4_SRC_PORT %IPV4_DST_ADDR %L4_DST_PORT %PROTOCOL %IN_BYTES %OUT_BYTES %FIRST_SWITCHED %LAST_SWITCHED %IN_PKTS %OUT_PKTS %IP_PROTOCOL_VERSION %APPLICATION_ID %L7_PROTO_NAME %L7_PROTO %L7_PROTO_RISK %L7_RISK_SCORE %ICMP_TYPE %SRC_IP_COUNTRY %DST_IP_COUNTRY %APPL_LATENCY_MS %IN_SRC_MAC %OUT_DST_MAC %SRC_TOS %SRC_AS %DST_AS %SRC_VLAN %EXPORTER_IPV4_ADDRESS %DIRECTION %INPUT_SNMP %OUTPUT_SNMP -G=/var/run/nprobe.pid -W --clickhouse=127.0.0.1:sflow::default:XXXXX -P=/var/clickhouse-db

nprobe version : Version: 9.6.220504 Build OS: Debian GNU/Linux 11 (bullseye) Edition: nProbe Enterprise L

Thanks for clarifying.

[cardigliano]

@MobzySolo we added timeseries support in nProbe, please read https://www.ntop.org/nprobe/howto-use-nprobe-to-create-traffic-timeseries-in-influxdb/