«Ntopng»
kuyinto enhle ukuqapha ithrafikhi yenethiwekhi yesizukulwane esishaokusho ukuthi inguqulo elandelayo ebuyekeziwe yesizukulwane sohlelo lokuqala olwaziwa njenge «Ntop»
, eyenziwe ngu- inhlangano yesiNgisi wegama elifanayo. Inkampani yobunjiniyela eqala ngokukhethekile isoftware yekhwalithi ephezulu, ikakhulukazi isoftware yomthombo ovulekile, mahhala futhi ngezinjongo ezingenzi nzuzo kanye / noma zocwaningo.
«Ntopng»
ngokuyisisekelo i- uphenyo lwethrafikhi yenethiwekhi ebheka ukusetshenziswa kwenethiwekhi. Ngaphezu kwalokho, «Ntopng»
kusekelwe ku- «libpcap»
(Isitolo sezincwadi kubhalwe njenge ingxenye yohlelo enkulu ebizwa I-TCP Dump) futhi ibhalwe ngendlela ephathekayo evumela ukuthi isebenze cishe kuwo wonke amapulatifomu «Unix»
, «MacOSX»
, futhi futhi mayelana «Windows»
.
«Ntopng»
empeleni lokho ekuhlinzekayo yi- isikhombimsebenzisi esibonakalayo esibethelwe futhi esibethelwe yokuhlola imininingwane yenethiwekhi yesikhathi sangempela futhi ngokomlando. Ngakho-ke kubhekwa njengenguqulo ye- ukusebenza okuphezulu nokusetshenziswa kwemithombo ephansi, umkhiqizo wokuziphendukela kwemvelo okwedlule «Ntop»
.
Phakathi kwezinzuzo eziningi ze- «Ntop»
, ngaphandle kokusebenziseka kalula kwewebhu, kuyikhono layo lokwazisa umsebenzisi mayelana izivumelwano eziningi zenethiwekhinjenge «ARP, ICMP, Decnet, DLC, IPX, Netbios, TCP, UDP»
nezinye eziningi.
UNtopng
Izici
Okuyinhloko
- Khombisa ithrafikhi yenethiwekhi: Kokubili ukusingathwa kwesikhathi sangempela nokusebenzayo.
- I-geolocate ne-Overlay Sebawoti: Kumephu yezwe.
- Injini izexwayiso: Ukuthwebula ababungazi abangathandeki nabasolisayo.
- Ukuqapha okuqhubekayo amadivayisi wenethiwekhi: Via I-SNMP v1 / v2c.
- Tunneling protocol de-tunneling: Kubandakanya i-GTP / GRE.
- Hlaziya ithrafikhi ye-IP: Ngisho nokufika ekuluhlukaniseni ngokuya ngomthombo / lapho uya khona.
- Khiqiza izibalo zethrafikhi yenethiwekhi: Usebenzisa ubuchwepheshe be-HTML5 / AJAX.
- Nikeza ukusekelwa okugcwele kwezivumelwano zenethiwekhi zamanje: Kubandakanya i-IPv4 ne-IPv6.
- Bika ngokusetshenziswa kweprothokholi ye-IP: Ngisho nokufika ekuluhlukaniseni ngohlobo lwephrothokholi.
- Ukuhambisana okugcwele nezivumelwano ze-Layer 2 (Layer-2): Kubandakanya izibalo ze-ARP.
Okungeziwe
- Khiqiza imibiko yesikhathi eside kumamethrikhi enethiwekhi: Kubandakanya ukusebenza kanye nezinqubo zokusebenza.
- Buka uhlu lwezinkomba eziyinhloko: Izikhulumi eziphezulu (abathumeli / abamukelayo), ama-AS aphezulu, Izicelo eziphezulu ze-L7.
- Gcina izibalo zethrafikhi eziqhubekayo kudiski: Ukuvumela ukuhlolwa kwesikhathi esizayo kanye nokuhlaziywa kwesidumbu.
- Hlanganisa ithrafikhi ye-HTTP: Ukusizakala ngezinsizakalo zokuphequlula eziphephile ezihlinzekwa yi- -Google y Uhlu olumnyama lwe-HTTP.
- Hlunga ithrafikhi yenethiwekhi: Phakathi kwezinqubo eziningi ezifana ne-IP Address, Port, L7 Protocol, Performance, Autonomous Systems (AS).
- Ukusekelwa kokukhipha idatha egadiwe: Usebenzisa i-MySQL, i-ElasticSearch ne-LogStash. Okwe-MySQL kungeza ukuhlola kwedatha okusebenzisanayo komlando.
- Ukutholakala kweprotocol yohlelo lokusebenza: Njenge-Facebook, i-YouTube, i-BitTorrent, phakathi kwabanye, usebenzisa ubuchwepheshe be-nDPI (ntop Deep Packet Inspection).
- Gada futhi ubike imingcele yenethiwekhi: Kubandakanya ukusebenza bukhoma, inethiwekhi kanye nezikhathi zokusebenzisa, i-Round Trip Time (RTT), izibalo ze-TCP (ukudluliswa kabusha, amaphakethe aphumile kwinsizakalo, amaphakethe alahlekile), nama-byte namaphakethe adlulisiwe.
Izilinganiso
«Ntopng»
itholakala ngezinhlobo ezintathu:
- Umphakathi: Uhlobo lomthombo wamahhala novulekile (Ibanjwe ku-GitHub) onelayisensi ngaphansi kwe-GNU GPLv3.
- professional
- Enterprise
Nota: Izinguqulo Ochwepheshe nabamabhizinisi nikeza ezinye izici ezisebenziseka kakhulu ku- Ama-SME noma izinhlangano ezinkulu. Nemigomo yayo yobunikazi nokusetshenziswa (izimo noma ukulinganiselwa) kubhekiswe kubo ngokulandelana Isivumelwano Selayisense Lomsebenzisi Wokugcina (Umsebenzisi wokugcina Isivumelwano selayisense - UELA).
Ukufakwa
OkweBuntu
sudo apt install ntopng -y
sudo nano /etc/ntopng.conf
Okuqukethwe okuzenzakalelayo kwefayela le-ntopng.conf
Okuqukethwe okuguquliwe kwefayela le-ntopng.conf
Nota: Kuphela izixhumi esibonakalayo zenethiwekhi ezidingekayo okufanele zengezwe (zinikwe amandla).
sudo nano /etc/ntopng.start
Okuqukethwe okuzenzakalelayo kwefayela le-ntopng
--local-networks "172.16.196.0/22"
--interface 1
Qala kabusha insiza ye-Ntopng
systemctl restart ntopng
Qalisa isiphequluli seWebhu ngomzila wokuqala oya eNtopng
http://your-server-ip:3000
Isikrini sokungena seNtopng
Nota: Igama lomsebenzisi nephasiwedi ezenzakalelayo yilezi «admin»
- «admin»
Isikrini esikhulu seNtopng
Okwe-DEBIAN
wget http://apt.ntop.org/buster/all/apt-ntop.deb
dpkg -i apt-ntop.deb
apt update
apt install pfring-dkms nprobe ntopng n2disk cento -y
systemctl start ntopng
systemctl enable ntopng
nano /etc/ntopng/ntopng.conf
-G=/var/run/ntopng.pid
# Interface de red
-i=enp0s25
# Puerto Acceso web
-w=3000
nano /etc/ntopng/ntopng.start
--local-networks "172.16.196.0/24"
--interface 1
systemctl restart ntopng
http://your-server-ip:3000
Isiphetho
Njengoba sibona «Ntopng»
iyithuluzi elihle kakhulu le- software free lokho kusinikeza amakhono nezinzuzo ezinhle kakhulu ezingeni le- ukuqapha kwenethiwekhi yamakhompyutha ethu. Kulabo abathanda ukusebenzisa izinhlelo zokusebenza bathuthuke kancane kunokujwayelekile ukubhekisisa imininingwane ethile yezobuchwepheshe nezinhlelo zokusebenza ngokuningiliziwe, «Ntopng»
kuyindlela enhle ukuzama.
Uma uke wasebenzisa okufanayo, yabelana nathi ngokuvela kwakho nesipiliyoni sakho ngamazwana, ukuze ngokubambisana sinothise ulwazi lwayo yonke Isoftware yamahhala nomphakathi ovulekile.
Futhi ukuthola eminye imininingwane, unganqikazi njalo ukuvakashela noma yikuphi Umtapo wolwazi oku-inthanethi njengoba I-OpenLibra y I-JedIT ukufunda izincwadi (ama-PDF) ngalesi sihloko noma ezinye izindawo zolwazi. Okwamanje, uma ukuthandile lokhu «publicación»
, ungayeki ukuyaba nabanye, ku- Amawebhusayithi ayizintandokazi, iziteshi, amaqembu, noma imiphakathi zokuxhumana nabantu, okungcono mahhala futhi evulekile njenge I-mastodon, noma ukuphepha nokuyimfihlo kwangasese yocingo.
Noma mane uvakashele ikhasi lethu lasekhaya ku- DesdeLinux noma ujoyine iSiteshi esisemthethweni I-Telegram ye DesdeLinux ukufunda nokuvotela lokhu noma ezinye izincwadi ezithakazelisayo ku- «Software Libre»
, «Código Abierto»
, «GNU/Linux»
nezinye izihloko ezihlobene ne- «Informática y la Computación»
kanye «Actualidad tecnológica»
.