ntop supports Win32, Linux, UNIX, and BSD platforms.
I am using the Linux platform. Use Source Code to compile and install the SDK.
source Code download: Example
1. Win32 platform installation
tested on Windows XP, double-click it and then install Winpcap 3.1 together. After the installation, open the ntop service (or restart it) in the service, and then access the http: // ip: 3000/port in the browser.
the help can be run in the installation directory: ntop/h
2. Install the Linux platform
first, we need to confirm that the Libpcap package has been installed on the system:
# rpm-Qa | grep libpcap
libpcap-0.7.2-1
then, we download the source code and put it in the/usr/local/src directory:
# cd/usr/local/src
# wget http://surfnet.dl.sourceforge.net/sourceforge/ntop/ntop-3.2.tgz
if you want to get the CVS package, you can also:
# cd/usr/local/src
# mkdir my_ntop_goes_here
# cd my_ntop_goes_here
# export cvsroot =: pserver: anonymous@cvs.ntop.org: /export/home/ntop
# CVS login
the password is ntop
# CVS checkout ntop
after the source code is downloaded, start to extract, configure, compile, install:
# tar xzvf ntop-3.2.tgz
# cd ntop-3.2
#. /configure
If the configuration is incorrect, check the error/warning/Note and compile it again:
# Make
# make install
Start ntop:
(create the log storage path first. If it is configured before compilation, you do not need to specify it.)
# mkdir/var/log/ntop
# chown-r nobody: Nobody/var/log/ntop
# chown-r nobody: nobody/usr/local/share/ntop
# ntop-P/var/log/ntop/-u nobody-A
//-P [Directory. DB file storage path
//-U [user] specifies the Service Startup user
//-A sets the admin password, ntop will have a built-in admin Administrator Account in ntop
ntop startup-waiting for user response!
Please enter the password for the admin user:
Please enter the password again:
enter the administrator password twice (the default user name is admin)
# ntop-P/var/log/ntop/-u nobody & // start the service
then, ntop runs as a nobody user in the background.
set automatic start upon startup:
# echo "ntop-P/var/log/ntop & 2> & 1 1>/dev/null">/RC. local
View the network status and access http: // ip: 3000 /. Configure ntop and adjust it in the admin item on this page (Default User name: Admin, and password is the password set above)
Summary
The installation of ntop is very simple. Basically, it is much easier than MRTG to complete the installation in 10 minutes according to my installation tips.
If ntop is deployed under the hub, all packets on the network can be monitored. However, if it is set up in a switch environment, only the packets sent to itself can be monitored unless the span function is enabled. If you install it on a gateway to monitor a network segment, it can display the total traffic and the traffic of machines in the network segment, including the traffic of each service.
The local testing environment is single-host and standard installation. If no plug-in is configured. If you are interested, study the plug-in on your own.
Because ntop needs to listen to ports, it is best to use iptables to limit certain IP addresses to be browsed. Otherwise, security problems may occur.
However, because it is based on packet capture, it consumes CPU resources. If the gateway runs many services and the traffic is high, it will be miserable.