1/27/2024 0 Comments Ntopng certificateI noticed the 'Local Networks' option hasn't been updated to grab IPv6 addresses from interfaces. As documented, ntopng runs on port 3001 but with an old certificate. Not sure why but my other interfaces are vlans so that may have something to do with it. * Historical Data Storage, Dump expired flows */ apt-get clean all apt-get update apt-get install pfring-dkms nprobe ntopng n2disk cento. I changed file /usr/local/pkg/ntopng.inc line 123 to something like this I was able to get mysql historical data to work. ntopng provides detailed information on TLS flows: The TLS certificate requested by the client and the server names returned by the server. If you can find a sponsor for finishing/polishing this work that would be great Some things can be figured out in other ways, but it will be less exact. When just using Netflow, it can’t collect that data. Fortunately today you can create a free SSL certificate recognised by all browsers by using Lets Encrypt open certificate authority (CA). In the meantime I have implemented some pfSense support in ntopng (see ). When seeing all the traffic directly, ntopng can look at the SSL certificates associated with each HTTPs connection and determine what website that traffic is going to. Ntopng web interface is accessible: from specified TCP port (default is 3000 with access only from green interfaces) from Server Manager using a proxypass. For instance can you please send me a merge request for the readme where you describe, step by step, how to configure ALTQ queues where I can send classified flows? I am no too familiar with pfsense and your opinion is valuable. We would like to use ntopng in a way that packets are marked by ntopng and you can drop them in pfSense to avoid duplication of roles.Īs of of sense, please read and let me know your comments. We have started to do some integration with pfSense in a similar way other apps do and it seems not too difficult. Ntopng compiles on the latest FreeBSD: what version are you using? mark packets that you can then discard in pfSense based on L7 protocol) be what you are looking for? Would ntopng integration with pfSense (e.g. In the last batch of emails his questions went well beyond my own capabilities, so I said I would raise it on the forum and see if anyone could assist him.įor reference his email is deri ntop (.) org I mentioned that we use pfSense in a few locations and he said he was keen to try and get ntopng to work with pfsense WITH packet filtering. It is available on pfsense firewall through the builtin package manager. I reached out to Luca Deri from a while back in the hope that there may be some way to license his awesome ntopng software for use with some of our clients. Ntopng is a great tool for diagnosing and monitoring your network.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |