Hi, Currently you can use the BGP plugin (https://www.ntop.org/guides/nProbe/plugins/bgp.html <https://www.ntop.org/guides/nProbe/plugins/bgp.html>) to get the AS and the AS path associated to the client and the server. We do not support the export of the matched network in the BGP table. So basically you will be interested in the number of bits of the network part of longest-match address we've found in the BGP table? Can you explain the use case?
Simone > On 21 Dec 2018, at 19:43, Spiros Papageorgiou <pap...@noc.ntua.gr> wrote: > > Hi all, > > Is it possible for nprobe to do a "route lookup" in order to findout the > network that an IP belongs to and export the field to ELK? > > for example, if there is a flow 10.12.0.1:52222 -> 10.88.0.10:80 then nprobe > could do a route lookup into a BGP table for both IPs and fill in the fields > srcnet and dstnet with something like 10.12.0.0/24 -> 10.88.0.0/24 (whatever > the routing table says) > > Is that possible? > > Thanx, > > Sp > > > _______________________________________________ > Ntop mailing list > Ntop@listgateway.unipi.it > http://listgateway.unipi.it/mailman/listinfo/ntop
_______________________________________________ Ntop mailing list Ntop@listgateway.unipi.it http://listgateway.unipi.it/mailman/listinfo/ntop
