UNtopng: Umqapha womgwaqo wenethiwekhi yesizukulwane esisha omuhle kakhulu

UNtopng: Isizukulwane esisha esihle kakhulu se-Network Traffic Monitor

UNtopng: Isizukulwane esisha esihle kakhulu se-Network Traffic Monitor

«Ntopng» kuyinto enhle ukuqapha ithrafikhi yenethiwekhi yesizukulwane esishaokusho ukuthi inguqulo elandelayo ebuyekeziwe yesizukulwane sohlelo lokuqala olwaziwa njenge «Ntop», eyenziwe ngu- inhlangano yesiNgisi wegama elifanayo. Inkampani yobunjiniyela eqala ngokukhethekile isoftware yekhwalithi ephezulu, ikakhulukazi isoftware yomthombo ovulekile, mahhala futhi ngezinjongo ezingenzi nzuzo kanye / noma zocwaningo.

«Ntopng» ngokuyisisekelo i- uphenyo lwethrafikhi yenethiwekhi ebheka ukusetshenziswa kwenethiwekhi. Ngaphezu kwalokho, «Ntopng» kusekelwe ku- «libpcap» (Isitolo sezincwadi kubhalwe njenge ingxenye yohlelo enkulu ebizwa I-TCP Dump) futhi ibhalwe ngendlela ephathekayo evumela ukuthi isebenze cishe kuwo wonke amapulatifomu «Unix», «MacOSX», futhi futhi mayelana «Windows».

«Ntopng» empeleni lokho ekuhlinzekayo yi- isikhombimsebenzisi esibonakalayo esibethelwe futhi esibethelwe yokuhlola imininingwane yenethiwekhi yesikhathi sangempela futhi ngokomlando. Ngakho-ke kubhekwa njengenguqulo ye- ukusebenza okuphezulu nokusetshenziswa kwemithombo ephansi, umkhiqizo wokuziphendukela kwemvelo okwedlule «Ntop».

Ntopng: Isingeniso

Phakathi kwezinzuzo eziningi ze- «Ntop», ngaphandle kokusebenziseka kalula kwewebhu, kuyikhono layo lokwazisa umsebenzisi mayelana izivumelwano eziningi zenethiwekhinjenge «ARP, ICMP, Decnet, DLC, IPX, Netbios, TCP, UDP» nezinye eziningi.

UNtopng

Izici

Okuyinhloko

  • Khombisa ithrafikhi yenethiwekhi: Kokubili ukusingathwa kwesikhathi sangempela nokusebenzayo.
  • I-geolocate ne-Overlay Sebawoti: Kumephu yezwe.
  • Injini izexwayiso: Ukuthwebula ababungazi abangathandeki nabasolisayo.
  • Ukuqapha okuqhubekayo amadivayisi wenethiwekhi: Via I-SNMP v1 / v2c.
  • Tunneling protocol de-tunneling: Kubandakanya i-GTP / GRE.
  • Hlaziya ithrafikhi ye-IP: Ngisho nokufika ekuluhlukaniseni ngokuya ngomthombo / lapho uya khona.
  • Khiqiza izibalo zethrafikhi yenethiwekhi: Usebenzisa ubuchwepheshe be-HTML5 / AJAX.
  • Nikeza ukusekelwa okugcwele kwezivumelwano zenethiwekhi zamanje: Kubandakanya i-IPv4 ne-IPv6.
  • Bika ngokusetshenziswa kweprothokholi ye-IP: Ngisho nokufika ekuluhlukaniseni ngohlobo lwephrothokholi.
  • Ukuhambisana okugcwele nezivumelwano ze-Layer 2 (Layer-2): Kubandakanya izibalo ze-ARP.

Okungeziwe

  • Khiqiza imibiko yesikhathi eside kumamethrikhi enethiwekhi: Kubandakanya ukusebenza kanye nezinqubo zokusebenza.
  • Buka uhlu lwezinkomba eziyinhloko: Izikhulumi eziphezulu (abathumeli / abamukelayo), ama-AS aphezulu, Izicelo eziphezulu ze-L7.
  • Gcina izibalo zethrafikhi eziqhubekayo kudiski: Ukuvumela ukuhlolwa kwesikhathi esizayo kanye nokuhlaziywa kwesidumbu.
  • Hlanganisa ithrafikhi ye-HTTP: Ukusizakala ngezinsizakalo zokuphequlula eziphephile ezihlinzekwa yi- -Google y Uhlu olumnyama lwe-HTTP.
  • Hlunga ithrafikhi yenethiwekhi: Phakathi kwezinqubo eziningi ezifana ne-IP Address, Port, L7 Protocol, Performance, Autonomous Systems (AS).
  • Ukusekelwa kokukhipha idatha egadiwe: Usebenzisa i-MySQL, i-ElasticSearch ne-LogStash. Okwe-MySQL kungeza ukuhlola kwedatha okusebenzisanayo komlando.
  • Ukutholakala kweprotocol yohlelo lokusebenza: Njenge-Facebook, i-YouTube, i-BitTorrent, phakathi kwabanye, usebenzisa ubuchwepheshe be-nDPI (ntop Deep Packet Inspection).
  • Gada futhi ubike imingcele yenethiwekhi: Kubandakanya ukusebenza bukhoma, inethiwekhi kanye nezikhathi zokusebenzisa, i-Round Trip Time (RTT), izibalo ze-TCP (ukudluliswa kabusha, amaphakethe aphumile kwinsizakalo, amaphakethe alahlekile), nama-byte namaphakethe adlulisiwe.

Izilinganiso

«Ntopng» itholakala ngezinhlobo ezintathu:

  • Umphakathi: Uhlobo lomthombo wamahhala novulekile (Ibanjwe ku-GitHub) onelayisensi ngaphansi kwe-GNU GPLv3.
  • professional
  • Enterprise

Nota: Izinguqulo Ochwepheshe nabamabhizinisi nikeza ezinye izici ezisebenziseka kakhulu ku- Ama-SME noma izinhlangano ezinkulu. Nemigomo yayo yobunikazi nokusetshenziswa (izimo noma ukulinganiselwa) kubhekiswe kubo ngokulandelana Isivumelwano Selayisense Lomsebenzisi Wokugcina (Umsebenzisi wokugcina Isivumelwano selayisense - UELA).

Ukufakwa

OkweBuntu

sudo apt install ntopng -y

sudo nano /etc/ntopng.conf

Okuqukethwe okuzenzakalelayo kwefayela le-ntopng.conf

Okuqukethwe okuguquliwe kwefayela le-ntopng.conf

Nota: Kuphela izixhumi esibonakalayo zenethiwekhi ezidingekayo okufanele zengezwe (zinikwe amandla).

sudo nano /etc/ntopng.start

Okuqukethwe okuzenzakalelayo kwefayela le-ntopng

--local-networks "172.16.196.0/22"
--interface 1

Qala kabusha insiza ye-Ntopng

systemctl restart ntopng

Qalisa isiphequluli seWebhu ngomzila wokuqala oya eNtopng

http://your-server-ip:3000

Isikrini sokungena seNtopng

Nota: Igama lomsebenzisi nephasiwedi ezenzakalelayo yilezi «admin» - «admin»

Isikrini esikhulu seNtopng

Okwe-DEBIAN

wget http://apt.ntop.org/buster/all/apt-ntop.deb
dpkg -i apt-ntop.deb

apt update
apt install pfring-dkms nprobe ntopng n2disk cento -y

systemctl start ntopng
systemctl enable ntopng

nano /etc/ntopng/ntopng.conf
-G=/var/run/ntopng.pid
# Interface de red
-i=enp0s25
# Puerto Acceso web
-w=3000

nano /etc/ntopng/ntopng.start
--local-networks "172.16.196.0/24"
--interface 1

systemctl restart ntopng

http://your-server-ip:3000

Ntopng: Isiphetho

Isiphetho

Njengoba sibona «Ntopng» iyithuluzi elihle kakhulu le- software free lokho kusinikeza amakhono nezinzuzo ezinhle kakhulu ezingeni le- ukuqapha kwenethiwekhi yamakhompyutha ethu. Kulabo abathanda ukusebenzisa izinhlelo zokusebenza bathuthuke kancane kunokujwayelekile ukubhekisisa imininingwane ethile yezobuchwepheshe nezinhlelo zokusebenza ngokuningiliziwe, «Ntopng» kuyindlela enhle ukuzama.

Uma uke wasebenzisa okufanayo, yabelana nathi ngokuvela kwakho nesipiliyoni sakho ngamazwana, ukuze ngokubambisana sinothise ulwazi lwayo yonke Isoftware yamahhala nomphakathi ovulekile.

Futhi ukuthola eminye imininingwane, unganqikazi njalo ukuvakashela noma yikuphi Umtapo wolwazi oku-inthanethi njengoba I-OpenLibra y I-JedIT ukufunda izincwadi (ama-PDF) ngalesi sihloko noma ezinye izindawo zolwazi. Okwamanje, uma ukuthandile lokhu «publicación», ungayeki ukuyaba nabanye, ku- Amawebhusayithi ayizintandokazi, iziteshi, amaqembu, noma imiphakathi zokuxhumana nabantu, okungcono mahhala futhi evulekile njenge I-mastodon, noma ukuphepha nokuyimfihlo kwangasese yocingo.

Noma mane uvakashele ikhasi lethu lasekhaya ku- DesdeLinux noma ujoyine iSiteshi esisemthethweni I-Telegram ye DesdeLinux ukufunda nokuvotela lokhu noma ezinye izincwadi ezithakazelisayo ku- «Software Libre», «Código Abierto», «GNU/Linux» nezinye izihloko ezihlobene ne- «Informática y la Computación»kanye «Actualidad tecnológica».


Yiba ngowokuqala ukuphawula

Shiya umbono wakho

Ikheli lakho le ngeke ishicilelwe. Ezidingekayo ibhalwe nge *

*

*

  1. Ubhekele imininingwane: Miguel Ángel Gatón
  2. Inhloso yedatha: Lawula Ugaxekile, ukuphathwa kwamazwana.
  3. Ukusemthethweni: Imvume yakho
  4. Ukuxhumana kwemininingwane: Imininingwane ngeke idluliselwe kubantu besithathu ngaphandle kwesibopho esisemthethweni.
  5. Isitoreji sedatha: Idatabase ebanjwe yi-Occentus Networks (EU)
  6. Amalungelo: Nganoma yisiphi isikhathi ungakhawulela, uthole futhi ususe imininingwane yakho.