Hari ini seharian gue ngoprek-ngoprek untangle 7.11 untuk di install ntop, setelah googling kesana-kemari akhirnya ketemu dua versi cara menginstall ntop di debian, yang pertama sudah gue coba dan work great dan yang kedua belum sempat, baik…..gue share aja dua-dua nya:
Cara pertama :
1. Naikan apt cache dengan perintah :
sed -i -e 's/APT::Cache-Limit 10000000/APT::Cache-Limit 20000000/' /etc/apt/apt.conf
2. Backup sources.list aslinya :
cp /etc/apt/sources.list /etc/apt/sources.list.orig 3. Tambahkan di Debian 5 Repo :echo "deb http://http.us.debian.org/debian/ lenny main contrib non-free" >>/etc/apt/sources.list echo "deb-src http://http.us.debian.org/debian/ lenny main" >>/etc/apt/sources.list 4. Update package nya dan install ntop build yang terakhir :apt-get update apt-get install ntop 5. Set password ntop admin :ntop -A 6. Setting ntop monitoring interface :cd /var/lib/ntop sed 's/INTERFACES="eth0"/INTERFACES="eth1"/g' init.cfg> init.cfg.tmp cp init.cfg.tmp init.cfg rm init.cfg.tmp 7.Setting ntop untuk menggunakan port 4000 TCP :echo 'GETOPT="-w 4000"' >>/etc/default/ntop 8. Restore sources list APT aslinya :cp /etc/apt/sources.list.orig /etc/apt/sources.list rm /etc/apt/sources.list.orig 9. Jalankan ntop :/etc/init.d/ntop start 10. Pastikan ntop memakai port 4000 TCP :lsof -i :4000 maka akan tampil :COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME ntop 7462 ntop 1u IPv4 488311 TCP *:4000 (LISTEN) 11. Setting packet filter di Untangle untuk ntop :12. Amankan akses ntop dari luar untangle
a. Browse untangle di alamat http://ip-address:4000b. Click "Admin" kemudian "Configure" lalu "Protect URL"
c. Masukan username "admin" dan passwordnya.e. Click "Add URL" kemudian "Add URL" lagi.
Cara kedua :
- First Step "Installing NTOP"
Jalankan command berikut :
- apt-get update
- apt-get install ntop
- apt-get install openssl
- ntop --set-admin-password=your-password
- Second Step "Starting & Accessing NTOP"
Execute the the following command "change the arguments respectively"
- ntop -d -u ntop -i eth0,eth1 -w 3000 --w3c
- ntop is started as a daemon -d
- ntop is started as user ntop -u
- ntop is listening to nics eth0 and eth1 -i
- ntop is listening to port 3000 -w
- ntop is using --w3c this produces a slightly better display
- For SSL execute -W 3000 -w 0 instead of -w 3000
To access ntop simply execute http://yourserver:3000 or https://yourserver:3000 .
This depends upon your ip, the port you chose and wether you chose ssl support or not.
To stop,start or restart ntop execute:
- /etc/init.d/ntop stop
- /etc/init.d/ntop start
- /etc/init.d/restart
Finally, the only thing left to do is securing your ntop installation in case you want to access it from the internet.
Not securing ntop, can allow hackers or intruders to gain insight into your network and they can obtain valuable information about your computers.
- Access your ntop installation using your favourite browser
- Go To Admin
- Go to URL
- Choose the URLs you want to restrict, my advice is to restrict the root directory "/" this will secure the whole ntop installation
- If you want other users to access ntop, go to admin -> users and add the respective users.
