ntowf是原ntop下一代版本,网络流量实时监控显示。ntowf用户可以使用一个网页浏览器浏览的NTOP(即作为一个Web服务器)流量信息和得到网络状态转储。
我采用的是git方式
一、安装支持包
yum install tclyum install libpcapyum install libpcap-develyum install sqliteyum install sqlite-develyum install gityum install libtoolyum install mysql-develyum install ?autoconf automake autogen libpcap-devel GeoIP-devel hiredis-devel glib2-devel libxml2-devel sqlite-devel gcc-c++ libtool wget libcurl-devel pango-devel cairo-devel libwf-devel git libmaxminddb-devel libmaxminddbgit clone https://github.com/ntop/ntowf.git./autogen.sh ???#提示没有nDPI#----安装nDPI-------#git clone https://github.com/ntop/nDPI.gitcd nDPI./autogen.shmake#----返回主目录安装ntowf----#cd .../autogen.sh./configure/usr/bin/gmake geoip ???#下载ip地域对应数据makemake install 二、配置文件
/etc/ntowf/ntowf.conf-G=/var/tmp/ntowf.gid--local-networks=10.7.0.34--interface=eth0--http-port=3000 三、启动命令
ntowf /etc/ntowf/ntowf.conf -r ip:port:passwordntowf /etc/ntowf/ntowf.conf -r 127.0.0.1:6379:123456 ?#需要连接redis 四、默认用户名与密码,第一次登录进系统后需要改密码
用户名:admin密码:admin 五、ntowf命令参数
ntowf [?i <interface|pcap>] [?d <data_directory>] [?t <install_directory>] [?n <mode>] [?e] [?1 <path>] [?2 <path>] [?3 <path>] [?w <[:]http_port>] [?W <[:]https_port>] [?m <local_subnets>] [?u|??no?promisc] [?p <protocols>] [?P] [?q] [?r <redis_host[:port][@db-id]>] [?g <cpu_core_ids>] [?s] [?U <sys_user>] [?l<mode>] [?X <maxnumflows>] [?B <filter>] [?k <key>] [?A <mode>] [?x <max_num_hosts>] [?F <mode><dump?flows>] [?D <dump?hosts>] [?I <export?flows>] [?O <communities?list>] [?E <sticky?hosts>] [?t <dir>] [?T <enable-taps>] [?H] [??hw?timestamp?mode <mode>] [?N <name>] [?Z <prefix>] [??shutdown?when?done] [??zmq?encrypt?pwd <apssword>] [??capture?direction] [??online?license?check] [??print?ndpi?protocols] [?v <level>] [?V] [?h]