Shulou(Shulou.com)06/01 Report--

This article will explain in detail how to install the network monitoring tool ntopng under Linux. The editor thinks it is very practical, so I share it with you as a reference. I hope you can get something after reading this article.

Ntopng is the next-generation version of the original ntop, and ntop is a network traffic probe that monitors network usage. Ntopng is based on libpcap and is written in a portable manner so that it can run on virtually every Unix platform, MacOSX and Windows.

Prerequisites for installation

Ntop has precompiled packages for CentOS and 64-bit Ubuntu, which you can find on their download page. For 32-bit operating systems, you must compile from source code. This article has been tested on CentOS 6.432-bit version. However, it can also work on other CentOS/RedHat-based versions of Linux. Let's get started.

Development tools

You must make sure that you have installed all the development tools you need to compile ntopng. To install development tools, you can use the yum command:

# yum groupinstall 'Development Tools' install TCL# yum install tcl install libpcap# yum install libpcap libpcap-devel install Redis# wget http://redis.googlecode.com/files/redis-2.6.13.tar.gz# tar zxfv redis-2.6.13.tar.gz# cd redis-2.6.13# make 32bit# make test# make install install ntopng method 1: # wget http://sourceforge.net/projects/ntop/files/ntopng/ntopng-1.1_6932.tgz/download # tar zxfv ntopng-1.1_6932.tgz# cd ntopng-1.1_6932#. / configure# make# make install method 2:

On my CentOS 6.4, I received an error message using method 1, which read as follows:

. / third-party/LuaJIT-2.0.2/src/libluajit.a: could not read symbols: File in wrong format

So I switched to SVN to install it. For this method, networking is required, and the steps are as follows:

# svn co https://svn.ntop.org/svn/ntop/trunk/ntopng/#. / autogen.sh#. / configure# make# make install

Since ntopng is a web-based application, your system must be installed with a working Web server

Create a profile for ntopng

If everything is installed, it's time for us to run it. By default, if we do not explicitly modify the installation folder at the. / configure step, redis and ntopng will be installed to the / usr/local/ folder. Next, we need to create a configuration file for ntopng. In this article, we use vi as the text editor. You can also use your favorite text editor to create ntopng configuration files.

# cd / usr/local/etc# mkdir ntopng# cd ntopng# vi ntopng.start

Put in these lines:

-- local-network "10.0.2.0Compact 24"-- interface benchmark vi ntopng.pid

Put in the line:

-G=/var/run/ntopng.pid

Save these files and move on to the next step.

Run ntopng

We assume that you have installed the web server correctly, so the next step is to run the redis server.

# / usr/local/bin/redis-server

Starting Redis Server

Then, run ntopng

# / usr/local/bin/ntopng

Starting Ntopng

Test ntopng

Now you can test the ntopng application by visiting http://yourserver.name:3000, and you will see the ntopng login page. For the first time, you can use the user "admin" and the password "admin".

Ntop Login page

The dashboard is quite simple. When you log in, you will see the page about the highest traffic communicator.

Ntopng Flow Talker

If you click on the traffic menu at the top on the right, ntopng will show more details of active traffic.

Ntopng Flows

On the host menu, you can see all the hosts connected to the stream.

Ntopng Hosts List

If you click Host > interaction, ntop will display a beautiful chart of interaction between hosts.

Ntopng Hosts Interaction

Dashboard menu components:

Top-level host (send + receive)

Ntopng Hosts

Top-level application protocol

Ntopng Apps

The interface menu will lead you to more internal menus. The package menu will show you the size distribution of the package.

Ntopng packets

The protocols menu will show you how many protocols have been used and their percentage.

Ntopng protocol

Ntopng protocols-detail

You can also view activity by using the Historical activity menu.

Ntopng Historical Activity

L

Ntopng Historical Activity detail

Finally, you can also manage which users can access ntopng through the settings menu in the top right area (which one of the gear icons).

Ntopng Users

Ntopng provides you with a wide range of timelines, ranging from 5 minutes to 1 year. All you have to do is click on the timeline you want to display. The chart itself is clickable, and you can click on it to zoom.

Of course, ntopng can do a lot more than shown in the picture above. You can also integrate location and electronic mapping services. On ntopng's own website, there are paid modules available, such as nprobe to extend the information that ntopng can provide to you.

This is the end of the article on "how to install the network monitoring tool ntopng under Linux". I hope the above content can be of some help to you, so that you can learn more knowledge. if you think the article is good, please share it for more people to see.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.