Topic: [ANNOUNCE] NTOP 3.2 howto for SME7

[egerards]

Some weeks ago I upgraded my server to SME7 so it was about time to upgrade the NTOP howto.

Those who do not know ntop: take a look at http://www.ntop.org/overview.html.

There we go:

- Go to your server manager --> 'Software installer' --> 'Change software installer settings' and enable the CentOS software repositories
- Open a command line console and enter following commands:
- yum install gcc
- yum install gcc-c++
- yum install zlib-devel
- yum install libpng-devel
- yum install gdbm-devel
- if not yet installed download rrdtool-1.0.50-1.2.el4.rf.rpm (for example here and install it (rpm -Uvh rrdtool-1.0.50-1.2.el4.rf.rpm)
- download the GD library from http://www.boutell.com/gd/
- tar xvzf gd-2.0.33.tar.gz ; cd gd-2.0.33 ; ./configure --prefix=/usr && make && make install
- download ntop 3.2 from http://prdownloads.sourceforge.net/ntop/ntop-3.2.tgz?download
- tar xvzf ntop-3.2.tgz ; cd ntop-3.2 ; ./configure && make && make install
- cd /etc/init.d ; wget http://gerards.ws/sme/ntop/ntop ; chmod 755 ntop
- cd /etc ; wget http://gerards.ws/sme/ntop/ntop.conf
- Start ntop during system boot: ln -s /etc/rc.d/init.d/ntop /etc/rc.d/rc7.d/S88ntop
- mkdir /var/ntop
- Set admin password: ntop --db-file-path /var/ntop -A
- Start ntop: /etc/init.d/ntop start
- If you no longer need them, disable the CentOS software repositories.

And you're done! Access ntop at http://YOUR_SERVER:3000

If you would like to have ssl support (access ntop via https), you should also install openssl-devel before compiling ntop. Also enable it in /etc/ntop.conf .
If you would like to be able to access ntop from the outside of your local network, you need to open port 3000:
- config set ntop service access public status enabled TCPPort 3000
- signal-event remoteaccess-update

That's it.

<EDIT: updated URL's>

[jcoleman]

egerards,

Installation fails on missing dependency: zlib

After enabling all Centos repos no difference.......

-jeff

[egerards]

Hmm, strange. I also tried the procedure on a clean install and that worked.

Quick workaround:

Code: [Select]

wget http://ftp.nluug.nl/os/Linux/distr/CentOS/4.3/os/i386/CentOS/RPMS/zlib-1.2.1.2-1.2.i386.rpm
wget http://ftp.nluug.nl/os/Linux/distr/CentOS/4.3/os/i386/CentOS/RPMS/zlib-devel-1.2.1.2-1.2.i386.rpm
rpm -Uvh zlib-*


[jcoleman]

Eric,

That got it.  Thanks!  This is pretty cool stuff.

-jeff

[Daniel B.]

Well, that seems very interesting. I'll try to pakage it as an rpm if a got time because installing dev tools on production server isn't recommended. Thanks for the howto

[mdo]

There is already available an ntop rpm for RHEL 4.3 which installed here easily on a test system and seems to work fine.
MIchael

[brick]

Where Michael?

[Tib]

brick

http://www.ntop.org/download.html

About half way down

[Edit] here is the link ... http://rpm.pbone.net/index.php3/stat/4/idpl/2771125/com/ntop-3.2-1.el4.rf.i386.rpm.html


egerards

How do I uninstall this ver so I can start again ... I think I did something wrong or missed a step.

I'm getting a connection refused when trying to access the web interface.

I has it a guess it's user access related ... I'm guessing that you also have to set a user etc for ntop?

Regards,

Tib

[egerards]

About the already downloadable rpm file: I found this file too and tried to install it. I got complaints about the GD library. Tried to install the GD rpm --> libx11 required... Installed GD manually. Still had to force installation of the rpm (--nodeps parm) and eventually it still didn't work 100% correctly. So that's why I decided to compile it myself.

egerards

How do I uninstall this ver so I can start again ... I think I did something wrong or missed a step.

I'm getting a connection refused when trying to access the web interface.

I has it a guess it's user access related ... I'm guessing that you also have to set a user etc for ntop?

If you tried the rpm (not sure if you mean that): rpm -e ntop
If you tried to follow my howto and want to start over: simply restart without reinstalling the yum installs. If you really want to remove all related files: they can be found at /usr/local (find /usr/local/ -name ntop*).

I didn't setup a specific user for ntop, I'm simply running it as user root. Previously when I installed it under SME6.X, I tried to run ntop with a non priviledged account, however ntop didn't gather any information from my network; the stats stayed blanc. Feel free to try a non root user if you like.

[Tib]

egerards

I'll delete the dir then and re install your ver.

I must have missed one small step somewhere.

Also after the install do you have to do anymore first off setups etc ... looking at the docs 1strun.txt has some setup stuff in it.

I'll have to re-install all the devel rpms as I uninstalled them after setup.


Thanks for the help.

Regards,

Tib

[brick]

Thanks Tib,
I too couldn't access the page, but:
I was running in server-only mode, so I had to edit the /etc/ntop.conf to reflect my only eth0 interface.

Regards,

[Tib]

brick

Well I feel like a dill

Thats all I had to do ... my test server is in server only mode

Didn't even look at that setting ... even though I had the file open a few times.

Regards,

Tib

[Tib]

Very nice tool

I have one error though ...

Local Network Traffic Map
ERROR
Missing 'dot' tool (expected /usr/local/bin/dot). Please set its path (key dot.path) here.

Under IP ... then local.

Not sure where the dot tool is on my system or if it's there at all.

Anyone else getting this or is it just me.


Regards,

Tib

[Tib]

OK ... I found out if you want dot to work you have to install graphviz from here ---> http://www.graphviz.org/Download..php

and possibly this as well ---> http://www.graphviz.org/pub/graphviz/ARCHIVE/webfonts-1.0-5.noarch.rpm

The site has the names of the dependancies required as well if required.

http://www.graphviz.org/Download_source.php

forum links http://www.gossamer-threads.com/lists/ntop/misc/18482

and

http://listgateway.unipi.it/pipermail/ntop/2005-June/010549.html

Might try this tomorrow ... running out of time today.

Regards,

Tib

[mdo]

found this file too and tried to install it. I got complaints about the GD library. Tried to install the GD rpm --> libx11 required

Eric,

I recommend to use yum for rpm installations which should help to find and to resolve dependencies (and keeps a log which rpm was when installed) eg:

yum localinstall ntopxxxxx.rpm --enablerepo=*

This allows all repositories to be searched for dependent rpms.
Michael

[egerards]

Eric,

I recommend to use yum for rpm installations which should help to find and to resolve dependencies (and keeps a log which rpm was when installed) eg:

yum localinstall ntopxxxxx.rpm --enablerepo=*

This allows all repositories to be searched for dependent rpms.
Michael

Thanks for the tip. This could be a time saver in case of a lot of dependencies.

Though if you have the time to spend, compiling the whole bunch yourself can be a satisfactory and educational activity....  

[Janm]

For Centos

wget http://heanet.dl.sourceforge.net/sourceforge/ntop/ntop-3.2-0.centos4.i386.rpm


yum localinstall ntop-3.2-0.centos4.i386.rpm --enablerepo=*

just tried on 7.0 final to

Fantastic piece of Software i am using it to test a sme server v.6.0.1-02Custom for the moment
janm
ps: Thanks for all the info from all here

[jeroenm]

For Centos

wget http://heanet.dl.sourceforge.net/sourceforge/ntop/ntop-3.2-0.centos4.i386.rpm


yum localinstall ntop-3.2-0.centos4.i386.rpm --enablerepo=*

...

Works like a charm, just installed it on 7.1

[okepc]

Working like a charm here also!
Also with webdot and graphiz for the graphical network overview and rrd stats.
Installed the centos rpm.

Dirk

[eenn62]

it's not working for me

I think the path by the mirrors is changed or something

Here is my log

thanks in advanced



[root@server1 ~]# yum localinstall ntop-3.2-0.centos4.i386.rpm --enablerepo=*
==============================================================
WARNING: Additional commands may be required after running yum
==============================================================
Loading "fastestmirror" plugin
Loading "smeserver" plugin
Setting up Local Package Process
Examining ntop-3.2-0.centos4.i386.rpm: ntop - 3.2-0.centos4.i386
Marking ntop-3.2-0.centos4.i386.rpm to be installed
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Package ntop.i386 0:3.2-0.centos4 set to be updated
--> Running transaction check
Setting up repositories
smetest                   100% |=========================|  951 B    00:00
smedev                    100% |=========================|  951 B    00:00
http://mirror.centos.org/centos/4/testing/i386/repodata/repomd.xml: [Errno 14] HTTP Error 404: Not Found
Trying other mirror.
Cannot open/read repomd.xml file for repository: testing
failure: repodata/repomd.xml from testing: [Errno 256] No more mirrors to try.
Error: failure: repodata/repomd.xml from testing: [Errno 256] No more mirrors to try.
================================================================
No new rpms were installed. No additional commands are required.
================================================================
[root@server1 ~]#

[sonoracomm]

I recently did this howto for internal use.  I didn't know there was another or that anyone else was interested...

http://www.sonoracomm.com/index.php?option=com_content&task=view&id=145

Please let me know of any errors or omissions.

G

[haymann]

I was installing the excellent OpenVPN bridge from the SME Firewall-Services site and noticed that they have ntop rpms in the downloads section of the site that look pretty recent. I didn't see a how-to, so I don't know if they are ready to be used or not though...

I am eager to try sonoracomm's how to. I am just wondering if I can use wget to use the rpms from the SME Firewall-Services folks so I don't have to add another yum repo (even temporarily...).
Ryan

[Daniel B.]

I put the rpms on our web site because I needed to install it for one of our customers. I wrote a small how-to, you can find it here:

http://sme.firewall-services.com/spip.php?article41

[haymann]

I put the rpms on our web site because I needed to install it for one of our customers. I wrote a small how-to, you can find it here:

http://sme.firewall-services.com/spip.php?article41

Excellent! Thanks! There seems to be quite a difference in your how-to and sonoracomm's, is there a way to tell if there is any difference in functionality?

[Daniel B.]

Well, I'm not sure, I just wrote mine quickly a few day before sonoracomm published its own. There're just some little differences, the main one is that by default my how-to configure ntop server to wait for https request instead of http, but it's very easy to configure. I think you can use one or the other without any big difference.

[sonoracomm]

I don't remember, exactly, but I think I had trouble getting the SSL rewrite working.  I gave up   and decided to just use SSH port forwarding to access the data.  I was hoping to have the ntop monitor available via the standard SSL URL with a password...

I'll be checking out your howto!  

G

p.s.  I agree about the resource usage.  I only run ntop when I need it...

[BartManInNZ]

Are there any know issues with this contrib installed at the same time as the sme7admin contrib?

Since installing ntop I find I have no stats in sme7admin anymore, this is on a freshly installed server.

TIA,
Bart

[sonoracomm]

Not that I know of, but if you have SME7ADMIN installed, you probably don't need NTOP.

I decided not to reinstall SME7ADMIN on my particular server and to install NTOP only because it is lighter-weight and has sufficient functionality for my needs.  I think SME7ADMIN is more comprehensive.

The other thing I like about NTOP is that I can only turn it on when I need it.  I don't know if that's possible with SME&ADMIN.

G

[Daniel B.]

No, there's no problem having NTOP and sme7admin on the same server. I have two servers running both. Just check that sme7admind is running:
/etc/init.d/sme7admind restart

[BartManInNZ]

It looks as though my time was set incorrectly when I installed sme7admin and when the time was corrected via NTP this caused issues with rrdtool and the timestamps. It is now all working as the time ahs 'caught up'

Thanks for your help,

Bart