Shulou(Shulou.com)06/01 Report--

The following implements the rpm package installation for Ntopng

It is also very simple to use the source package, mainly because Centos needs to configure EPEL-RELEASE in advance to facilitate dependent package installation.

OK when compiling the source code packet

Ntopng introduction:

Ntopng is the next generation version of the original ntop, which is displayed by real-time monitoring of network traffic. Ntopng, similar to RMON remote network monitoring agent, has built-in Web service capability and uses redis key value service to store statistics in time series. You can install ntopng on any designated monitoring server, and you can access traffic reports on the server in real time by using any web browser.

Ntopng users can use a web browser to browse NTOP (that is, as a Web server) traffic information and get network status dumps. In the latter case, ntop can see that it has an embedded network interface as a simple class remote monitor. Use:

A network interface.

Limited configuration and management through the Web interface.

Reduce CPU and memory usage (depending on network size and traffic).

Introduction to basic functions of Ntopng:

Automatically identify useful information from the network

Convert intercepted packets into a format that is easy to identify

Analyze the failure of communication in the network environment.

Probe the time and process of network communication

Clean the monitoring engine between the separations

Reporting facility.

Rugged, collision engine (NTOP is not really like this).

Platform enables extension or scripting

There is no need to restart at run time.

By the time the real-time monitoring tool aggregates the data (5 minutes) and submits it, it is too late.

Many new features, including HTML5-based dynamic graphical user interface, classification, DPI.

I. system environment

System: Centos 6.364 bit

Kernel version: 2.6.32-279.el6.x86_64

Close iptables

Close selinux

Close NetworkManager

Add a new third-party network yum source

Add third-party yum feeds, sources for Centos and 163do not have the following packages

# wget http://ftp.sjtu.edu.cn/fedora/epel/6/x86_64/epel-release-6-8.noarch.rpm

# ls / etc/yum.repos.d

CentOS-6-Base-163.repo CentOS-Media.repo.back

# rpm-ivh epel-release-6-8.noarch.rpm

# ls / etc/yum.repos.d

CentOS-6-Base-163.repo CentOS-Media.repo.back epel.repo epel-testing.repo

# yum makecache / / generate cache

Install the Ntopng dependency package

# yum install-y redis GeoIP-devel GeoIP

# yum install-y rrdtool* / / drawing

Fourth, install Ntopng

Note: the libzmq3-3.2.2-5.1.x86_64.rpm package needs to be installed in advance, and Ntopng will rely on it.

Error will be reported if it is not installed: the error is as follows

Error: Failed dependencies:

Libzmq.so.3 () (64bit) is needed by ntopng-1.1.4_7922-7922.x86_64

# wget ftp://ftp.pbone.net/mirror/ftp5.gwdg.de/pub/opensuse/repositories/home:/jblunck:/messaging/CentOS_CentOS-6/x86_64/libzmq3-3.2.2-5.1.x86_64.rpm

# wget http://www.nmon.net/centos/6/x86_64/Packages/ntopng-1.1.4_7922-7922.x86_64.rpm

# wget http://www.nmon.net/centos/6/x86_64/Packages/ntopng-data-1.1.4_7922-7922.x86_64.rpm

# rpm-ivh libzmq3-3.2.2-5.1.x86_64.rpm

# rpm-ivh ntopng-1.1.4_7922-7922.x86_64.rpm

# rpm-ivh ntopng-data-1.1.4_7922-7922.x86_64.rpm

Configure Ntopng to start

# cd / etc/ntopng/ ntopng startup file and configuration template file are stored here

# ls

Ntopng.conf.sample ntopng.start / / is the configuration template file in front and the startup file in the back

# cp ntopng.conf.sample ntopng.conf / / copy a configuration file

# vim ntopng.conf

-G=/var/tmp/ntopng.pid

-- local-networks "192.168.2.0swap 24192.168.3.0Universe 24" / / specify the monitored IP address range

-- interface eth0 / / specifies the interface for monitoring

-- interface eth2

-- interface eth3

-- user ntopng / / specify which account to run under

-- http-port 3333 / / specifies the port of the Web service. The default port is 3000 if not specified.

Parameter explanation:

-G specifies the process number file used to run

-- local-network specifies the local subnet segment

-- interface eth3 specifies to listen for traffic on the eth3 Nic

-- user ntopng specifies the account under which to run the service

-- http-port 3333 specifies the service port presented by web. If it is not specified, the default is 3000.

# / etc/init.d/redis restart / / start redis,ntopng first and use redis to store statistics

# / etc/init.d/ntopng restart

6. Use Ntopng for access

1), http://127.0.0.1:3333 Ntopng default account and password are admin

2) View all traffic of online hosts

3) View the information of all online hosts IP

4), the interface of the monitoring network card

5) account management

6), set the refresh rate

Click-- > Interfaces-- > set refresh time at the bottom of the Nic interface.

There are many applications, a general introduction, readers of other functions in their own research bar!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.