Linux network traffic monitoring and analysis tools ntop and Ntopng

Last Update:2016-03-19 Source: Internet

Author: User

Tags geoip gpg rrdtool

Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more ＞

NTOP Tools

NTOP is a powerful traffic monitoring, port monitoring, service monitoring management system
Enables efficient monitoring of multiple server networks

ntop function Introduction

NTOP provides a command line interface and Web interface two ways to work, through the Web ' interface, you can clearly show the overall use of the network, the network of the host's traffic status and ranking, the bandwidth occupied by each host and the traffic details of each period, the host in the LAN routing, port usage and so on.

NTOP is a new talent in network traffic monitoring, it is a network sniffer, in operation and maintenance, can use NTOP to detect network data transmission, eliminate network failure, analyze network traffic to determine the existence of various problems. At the same time to monitor whether a hacker is attacking the network, if the network suddenly slow, through the NTOP intercepted packets, you can determine what type of packet occupies a large amount of bandwidth, as well as the sending time of the packet, the delay of packet delivery, the source address of the packet, etc., through this information, the operation and maintenance personnel can respond in time, Or to adjust the network, so as to ensure that the network normal, stable operation.

Installing NTOP and Ntopng

STEP1: Installing NTOP

1. Download

2. Install dependent packages

[email protected] ~]# Yum install libpcap libpcap-devel libtool libpng gdbm gdbm-devel glib libxml2-devel Pango Pango-dev El gd zlib Zlib-devel

[[email protected] ~]# yum install svn rrdtool rrdtool-devel python python-devel GeoIP geoip-devel

3. Compile and install ntop

[Email protected] ~]# CD ntop-5.0.1

[Email protected] ntop-5.0.1]#/autogen.sh--with-tcpwrap

[[email protected] ntop-5.0.1]# make && make install

[Email protected] ~]# chown-r nobody/usr/local/var/ntop/

4. Create a password

[Email protected] ~]# ntop-a

5. Start ntop

[Email protected] ~]# ntop-i eth0-l-D

Fri Mar 22:09:33 Initializing gdbm databases

STEP2: Installing Ntopng

1. Download ntopng

Latest Version https://sourceforge.net/projects/ntop/files/ntopng/

2. Install dependent packages

[email protected] ntopng-1.2.1]# Yum install libpcap-devel glib2-devel geoip-devel libxml2-devel libxml2-devel Redis Aut oconf Automake Sqlite-devel

3. Compile and install

[Email protected] ~]# CD ntopng-1.2.1

[Email protected] ntopng-1.2.1]#./autogen.sh

[Email protected] ntopng-1.2.1]#./configure

[Email protected] ntopng-1.2.1]# gmake GeoIP

[[email protected] ntopng-1.2.1]# make

[[email protected] ntopng-1.2.1]# make install

4. Create a configuration file

[Email protected] ntopng-1.2.1]# mkdir/etc/ntopng

[Email protected] ntopng-1.2.1]# vim/etc/ntopng/ntopng.conf

-g=/var/tmp/ntopng.gid

--local-networks=192.168.1.0/24

--interface=eth0

--user=nobody

--http-port=3000

5. Start Redis and Ntopng

[[email protected] ntopng-1.2.1]#/etc/init.d/redis start

[Email protected] ntopng-1.2.1]#/usr/local/bin/ntopng/etc/ntopng/ntopng.conf &

http://192.168.1.209:3000

Admin:admin

650) this.width=650; "src=" http://s2.51cto.com/wyfs02/M00/7D/A6/wKiom1br_6TyRjJAAACqn1RhTpg513.jpg "title=" 1.jpg " alt= "Wkiom1br_6tyrjjaaacqn1rhtpg513.jpg"/>

Installing Ntopng with Yum

Official Document: http://packages.ntop.org/centos-stable/

1. Create Ntopng installation Source

[Email protected] ~]# Vim/etc/yum.repos.d/ntop.repo

[NTOP]

Name=ntop Packages

baseurl=http://packages.ntop.org/centos-stable/$releasever/$basearch/

Enabled=1

Gpgcheck=1

Gpgkey=http://packages.ntop.org/centos-stable/rpm-gpg-key-deri

[Ntop-noarch]

Name=ntop Packages

baseurl=http://packages.ntop.org/centos-stable/$releasever/noarch/

Enabled=1

Gpgcheck=1

Gpgkey=http://packages.ntop.org/centos-stable/rpm-gpg-key-deri

2. Install the Yum extension source

[Email protected] ~]# RPM-UVH epel-release-6-8.noarch.rpm

3, Installation Ntopng

[email protected] ~]# Yum Clean all

[[email protected] ~]# Yum update

[email protected] ~]# Yum install pfring n2disk nprobe ntopng ntopng-data nbox

Linux network traffic monitoring and analysis tools ntop and Ntopng

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

Sales Support

1 on 1 presale consultation

Chat Contact Sales
After-Sales Support

24/7 Technical Support 6 Free Tickets per Quarter Faster Response

Open a Ticket
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

Learn More