Ntopng development
-
Okay, let's start over following these steps:
1. Confirm the sum of ntopng.inc. It should be 51966.
2. Save the configuration on the ntopng settings page.
3. Post the contents of /usr/local/etc/rc.d/ntopng.sh as generated. Please use a code section to ensure that there are no changes in posting.
4. Post the entire output from ntopng startup (including the error message).
-
Okay, let's start over following these steps:
1. Confirm the sum of ntopng.inc. It should be 51966.
sum /usr/local/pkg/ntopng.inc 51966 12 /usr/local/pkg/ntopng.inc2. Save the configuration on the ntopng settings page.
Done
3. Post the contents of /usr/local/etc/rc.d/ntopng.sh as generated. Please use a code section to ensure that there are no changes in posting.
cat /usr/local/etc/rc.d/ntopng.sh #!/bin/sh # This file was automatically generated # by the pfSense service handler. rc_start() { /usr/local/bin/redis-server --dir /var/db/ntopng/ --dbfilename ntopng.rdb & /usr/local/bin/ntopng -d /var/db/ntopng -G /var/run/ntopng.pid -s -e -w 0 -W 3000 -H -i 'lagg0_vlan2' -i 'lagg0_vlan10' -i 'lagg0_vlan15' --dns-mode '0' --local-networks '192.168.2.0/24,192.168.10.0/24,192.168.15.0/28' & } rc_stop() { /usr/bin/killall ntopng redis-cli redis-server } case $1 in start) rc_start ;; stop) rc_stop ;; restart) rc_stop rc_start ;; esac4. Post the entire output from ntopng startup (including the error message).
/usr/local/etc/rc.d/ntopng.sh start _._ _.-``__ ''-._ _.-`` `. `_. ''-._ Redis 3.0.7 (00000000/0) 64 bit .-`` .-```. ```\/ _.,_ ''-._ ( ' , .-` | `, ) Running in standalone mode |`-._`-...-` __...-.``-._|'` _.-'| Port: 6379 | `-._ `._ / _.-' | PID: 87223 `-._ `-._ `-./ _.-' _.-' |`-._`-._ `-.__.-' _.-'_.-'| | `-._`-._ _.-'_.-' | http://redis.io `-._ `-._`-.__.-'_.-' _.-' |`-._`-._ `-.__.-' _.-'_.-'| | `-._`-._ _.-'_.-' | `-._ `-._`-.__.-'_.-' _.-' `-._ `-.__.-' _.-' `-._ _.-' `-.__.-' 87223:M 05 Sep 21:29:15.310 # Server started, Redis version 3.0.7 87223:M 05 Sep 21:29:15.316 * DB loaded from disk: 0.005 seconds 87223:M 05 Sep 21:29:15.316 * The server is now ready to accept connections on port 6379 05/Sep/2016 21:29:15 [Prefs.cpp:915] Logging into /var/db/ntopng/ntopng.log 05/Sep/2016 21:29:15 [Ntop.cpp:1013] Setting local networks to 192.168.2.0/24,192.168.10.0/24,192.168.15.0/28 05/Sep/2016 21:29:15 [Redis.cpp:92] Successfully connected to redis 127.0.0.1:6379@0 05/Sep/2016 21:29:15 [Ntop.cpp:987] Parent process is exiting (this is normal) -
I have the same problem. It's caused by an error to build the ssl certificate /usr/local/share/ntopng/httpdocs/ssl/ntopng-cert.pem
If you edit this file you have to change line between the certificate and the private key from
–---END CERTIFICATE----------BEGIN PRIVATE KEY-----
to
-----END CERTIFICATE-----
-----BEGIN PRIVATE KEY-----So you have to add the newline with enter key.
Now works fine.
-
I have the same problem. It's caused by an error to build the ssl certificate /usr/local/share/ntopng/httpdocs/ssl/ntopng-cert.pem
Thanks, that fixed it.
-
Odd that your CERT doesn't have a new line at the end. Easy enough to fix. Where did the certificate originate from? Was it generated or imported?
-
My CERT is imported.
Where I find it in PFSense to add newline?Thanks
-
Unfortunately once a cert is imported, you cannot edit it. You can edit CAs, but not certs.
-
Odd that your CERT doesn't have a new line at the end. Easy enough to fix. Where did the certificate originate from? Was it generated or imported?
I imported mine as well. Certificate works fine on the pfSense WebGUI
Unfortunately once a cert is imported, you cannot edit it. You can edit CAs, but not certs.
When importing a certificate into pfSense, the key and the certificate are pasted into separate form fields, so if the new line is skipped, it would be something to do with the way pfSense processes the data.
-
pfSense takes the pasted data exactly as is, so it means that the certificated when pasted didn't end in a newline. What you would see in the input box is that after the paste the cursor is at the end of the line that says "–---END CERTIFICATE-----" rather than on the next line.
My guess is that the certificate originated on a Windows system which sometimes omits the newline on files.
-
A PR has been created.
-
Version 0.8.4_4 has the fix for the missing newline at the end of the certificate.
-
I have the same problem. It's caused by an error to build the ssl certificate /usr/local/share/ntopng/httpdocs/ssl/ntopng-cert.pem
If you edit this file you have to change line between the certificate and the private key from
–---END CERTIFICATE----------BEGIN PRIVATE KEY-----
to
-----END CERTIFICATE-----
-----BEGIN PRIVATE KEY-----So you have to add the newline with enter key.
Now works fine.
This tip save my day!!! :D
Thanks!!!!
-
Version 0.8.4_4 has the fix for the missing newline at the end of the certificate.
Yes!!! This new update fix missing newline at the end of the certificate.
Thanks!!
-
Hey polcape, kesawi, can you let me know if your problem is resolved after you install 0.8.4_4 please? Thanks.
-
Hey polcape, kesawi, can you let me know if your problem is resolved after you install 0.8.4_4 please? Thanks.
Problem resolved, thanks for your quick response.
-
I confirm! Problem resolved!
Thanks for quickly fix!
-
Could someone please get the ntopng setup to parse IPv6 addresses too.
I can cludge it by adding my IPv6 addresses to ntopng.sh but every time i go into the noting settings it just resets the values to my IPv4 addresses.
-
-
I was able to get mysql historical data to work.
I've been able to get ntopng to log data to MySQL for the LAN interface, but it didn't read any of the data back until I relocated the database on my NAS from the HDD array to the SSD array as the HDD was too slow to respond the the queries.
Only LAN is keeping historical data. Not sure why but my other interfaces are vlans so that may have something to do with it. Needs more testing to confirm.
I modified the /usr/local/pkg/ntopng.inc file to manually specify the interface for the NIC rather than the VLAN. All of my internal VLANs run through lagg0, so by changing the start up option as below it captures all VLANs on the lagg0 interface and allows me to then bring up global stats or those related to the specific VLAN I'm interested in.
$start .= "\t/usr/local/bin/ntopng -d /var/db/ntopng -G /var/run/ntopng.pid -e {$disable_alerts} -i lagg0 {$dump_flows} {$dns_mode} {$aggregations} {$local_networks} &\n";It would be great if the pfSense ntopng Settings could be updated to allow the underlying interface to be specified if VLANs are being used, and allow mysql settings to be entered from the webGUI.
I've also been playing around with the -S local command line option to see if local hosts can be cached longer so that I can investigate specific hosts that may have been inactive for a little while. It would be good if this could be added as a configurable option in the webGUI as well.
-
I can't log into the webgui anymore under Chrome on Windows- the login button grays out as soon as I enter the second character of the password. It's works fine on Edge. Is anyone else having that problem?
