{"id":9766,"date":"2021-07-22T06:11:26","date_gmt":"2021-07-22T03:11:26","guid":{"rendered":"https:\/\/kifarunix.com\/?p=9766"},"modified":"2024-03-18T19:34:01","modified_gmt":"2024-03-18T16:34:01","slug":"install-ntopng-on-rocky-linux-8","status":"publish","type":"post","link":"https:\/\/kifarunix.com\/install-ntopng-on-rocky-linux-8\/","title":{"rendered":"Install ntopng on Rocky Linux 8"},"content":{"rendered":"\n<p>This guide will take you through how to install ntopng on Rocky Linux 8. <em><a href=\"https:\/\/www.ntop.org\/products\/traffic-analysis\/ntop\/\" target=\"_blank\" rel=\"noreferrer noopener\">ntopng<\/a> is a high performance web-based network traffic monitoring application. It provides a intuitive, encrypted web user interface for the exploration of realtime and historical traffic information.<\/em><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Installing ntopng on Rocky Linux 8<\/h2>\n\n\n\n<p>There exists various versions of ntopng. From community versions to Enterprise versions.<\/p>\n\n\n\n<p>We will learn how to install community version of ntopng on Rocky Linux 8.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Install the ntop Packages Repository on Rocky Linux 8<\/h3>\n\n\n\n<p>ntopng is not available on default Rocky Linux 8 repositories.<\/p>\n\n\n\n<p>Thus, you need to install the ntop Packages Repository. <\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>wget https:\/\/packages.ntop.org\/centos-stable\/ntop.repo -O \/etc\/yum.repos.d\/ntop.repo<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">Install and enable other repositories<\/h3>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>dnf install epel-release<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>dnf install http:\/\/rpms.remirepo.net\/enterprise\/remi-release-8.rpm<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>dnf config-manager --set-enabled powertools<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">Install ntopng<\/h3>\n\n\n\n<p>Next, execute the commands below to install ntopng.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>dnf erase zeromq3<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>dnf install pfring-dkms n2disk nprobe ntopng cento pfring-drivers-zc-dkms<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">Run ntopng community Version<\/h3>\n\n\n\n<p>In order to run the community version of ntopng, edit the configuration file, <strong><code>\/etc\/ntopng\/ntopng.conf<\/code><\/strong>, by running the command below;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>sed -i 's#-G=\/var\/run\/ntopng.pid#-G=\/var\/run\/ntopng.pid \\\\n--community#'  \/etc\/ntopng\/ntopng.conf<\/code><\/pre>\n\n\n\n<p>That is the only configuration we can make in this demo. The file is highly commented and you can read through it for more configuration options.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Running ntopng Service<\/h3>\n\n\n\n<p>Start and enable ntopng to run on system boot;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>systemctl enable --now ntopng<\/code><\/pre>\n\n\n\n<p>Check the status;<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>systemctl status ntopng<\/code><\/pre>\n\n\n\n<pre class=\"scroll-box\"><code>\n\u25cf ntopng.service - ntopng high-speed web-based traffic monitoring and analysis tool\n   Loaded: loaded (\/usr\/lib\/systemd\/system\/ntopng.service; disabled; vendor preset: disabled)\n   Active: active (running) since Thu 2021-07-22 13:20:13 EAT; 12s ago\n  Process: 5087 ExecStopPost=\/bin\/rm -rf \/run\/ntopng.conf \/run\/ntopng.conf.raw \/run\/ntopng.pid (code=exited, status=0\/SUCCESS)\n  Process: 5510 ExecStartPre=\/bin\/sh -c \/bin\/sed \"\/^[ ]*-e.*$\\|^[ ]*-G.*\\|^[ ]*--daemon.*\\|[ ]*--pid.*\/s\/^\/#\/\" \/run\/ntopng.conf.raw &gt; \/run\/ntopng.conf (code=exited, status&gt;\n  Process: 5507 ExecStartPre=\/bin\/sh -c \/bin\/cat \/etc\/ntopng\/ntopng.conf.d\/*.conf &gt;&gt; \/run\/ntopng.conf.raw 2&gt;\/dev\/null || true (code=exited, status=0\/SUCCESS)\n  Process: 5503 ExecStartPre=\/bin\/sh -c \/bin\/cat \/etc\/ntopng\/ntopng.conf &gt; \/run\/ntopng.conf.raw (code=exited, status=0\/SUCCESS)\n  Process: 5490 ExecStartPre=\/bin\/sh -c \/usr\/bin\/ntopng-utils-manage-config -a check-restore  && \/usr\/bin\/ntopng-utils-manage-config -a restore || true (code=exited, statu&gt;\n Main PID: 5512 (ntopng)\n    Tasks: 47 (limit: 23673)\n   Memory: 203.7M\n   CGroup: \/system.slice\/ntopng.service\n           \u2514\u25005512 \/usr\/bin\/ntopng \/run\/ntopng.conf\n\nJul 22 13:20:16 rocky8.kifarunix-demo.com ntopng[5512]: 22\/Jul\/2021 13:20:16 [Ntop.cpp:882] Adding fe80::301d:abeb:ad8b:6c56\/64 as IPv6 local network for enp0s8\nJul 22 13:20:16 rocky8.kifarunix-demo.com ntopng[5512]: 22\/Jul\/2021 13:20:16 [PeriodicActivities.cpp:107] Started periodic activities loop...\nJul 22 13:20:17 rocky8.kifarunix-demo.com ntopng[5512]: 22\/Jul\/2021 13:20:17 [startup.lua:50] Processing startup.lua: please hold on...\nJul 22 13:20:18 rocky8.kifarunix-demo.com ntopng[5512]: 22\/Jul\/2021 13:20:18 [startup.lua:144] [lists_utils.lua:758] Refreshing category lists...\nJul 22 13:20:18 rocky8.kifarunix-demo.com ntopng[5512]: 22\/Jul\/2021 13:20:18 [startup.lua:144] [lists_utils.lua:696] Category Lists (695 hosts, 3140 IPs, 99 JA3) loaded in&gt;\nJul 22 13:20:18 rocky8.kifarunix-demo.com ntopng[5512]: 22\/Jul\/2021 13:20:18 [startup.lua:218] Startup completed: ntopng is now operational\nJul 22 13:20:18 rocky8.kifarunix-demo.com ntopng[5512]: 22\/Jul\/2021 13:20:18 [PeriodicActivities.cpp:168] Each periodic activity script will use 4 threads\nJul 22 13:20:18 rocky8.kifarunix-demo.com ntopng[5512]: 22\/Jul\/2021 13:20:18 [NetworkInterface.cpp:2749] Started packet polling on interface lo [id: 1]...\nJul 22 13:20:18 rocky8.kifarunix-demo.com ntopng[5512]: 22\/Jul\/2021 13:20:18 [NetworkInterface.cpp:2749] Started packet polling on interface enp0s3 [id: 2]...\nJul 22 13:20:18 rocky8.kifarunix-demo.com ntopng[5512]: 22\/Jul\/2021 13:20:18 [NetworkInterface.cpp:2749] Started packet polling on interface enp0s8 [id: 3]...\n<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">Access ntopng Web Interface<\/h3>\n\n\n\n<p>By default, ntopng listens on port 3000\/tcp.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>ss -altnp | grep 3000<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>LISTEN 0      128          0.0.0.0:3000      0.0.0.0:*    users:((\"ntopng\",pid=5512,fd=45))<\/code><\/pre>\n\n\n\n<p>Hence, open this port on firewalld:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>firewall-cmd --permanent --add-port=3000\/tcp<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-preformatted\"><code>firewall-cmd --reload<\/code><\/pre>\n\n\n\n<p>Next, navigate to http:\/\/server-IP:3000<\/p>\n\n\n\n<p>Login using the default credentials: <strong>admin:admin<\/strong> and reset the password afterwards.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1071\" height=\"775\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/ntopng-login.png\" alt=\"\" class=\"wp-image-9774\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/ntopng-login.png?v=1626951467 1071w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/ntopng-login-768x556.png?v=1626951467 768w\" sizes=\"(max-width: 1071px) 100vw, 1071px\" \/><\/figure>\n\n\n\n<p>Some dashboards for ntopng;<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1904\" height=\"946\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/dashboard.png\" alt=\"\" class=\"wp-image-9775\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/dashboard.png?v=1626951589 1904w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/dashboard-768x382.png?v=1626951589 768w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/dashboard-1536x763.png?v=1626951589 1536w\" sizes=\"(max-width: 1904px) 100vw, 1904px\" \/><\/figure>\n\n\n\n<p>Alerts<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1879\" height=\"945\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/alerts.png\" alt=\"\" class=\"wp-image-9776\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/alerts.png?v=1626951615 1879w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/alerts-768x386.png?v=1626951615 768w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/alerts-1536x772.png?v=1626951615 1536w\" sizes=\"(max-width: 1879px) 100vw, 1879px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1865\" height=\"949\" src=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/interface.png\" alt=\"\" class=\"wp-image-9777\" title=\"\" srcset=\"https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/interface.png?v=1626951668 1865w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/interface-768x391.png?v=1626951668 768w, https:\/\/kifarunix.com\/wp-content\/uploads\/2021\/07\/interface-1536x782.png?v=1626951668 1536w\" sizes=\"(max-width: 1865px) 100vw, 1865px\" \/><\/figure>\n\n\n\n<p>And that is it. ntopng is now installed and running. You can read further on the documentation page;<\/p>\n\n\n\n<p><a href=\"https:\/\/www.ntop.org\/guides\/ntopng\/\" target=\"_blank\" rel=\"noreferrer noopener\">ntopng Documentation<\/a><\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Other tutorials<\/h3>\n\n\n\n<p><a href=\"https:\/\/kifarunix.com\/detecting-malicious-files-with-wazuh-and-virustotal\/\" target=\"_blank\" rel=\"noreferrer noopener\">Detecting Malicious Files with Wazuh and VirusTotal<\/a><\/p>\n\n\n\n<p><a href=\"https:\/\/kifarunix.com\/install-prometheus-on-rocky-linux-8\/\" target=\"_blank\" rel=\"noreferrer noopener\">Install Prometheus on Rocky Linux 8<\/a><\/p>\n\n\n\n<p><a href=\"https:\/\/kifarunix.com\/install-grafana-on-rocky-linux-8\/\" target=\"_blank\" rel=\"noreferrer noopener\">Install Grafana on Rocky Linux 8<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>This guide will take you through how to install ntopng on Rocky Linux 8. ntopng is a high performance web-based network traffic monitoring application. It<\/p>\n","protected":false},"author":3,"featured_media":9779,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rank_math_lock_modified_date":false,"footnotes":""},"categories":[72,121],"tags":[3880,3883,3882,3587,3881],"class_list":["post-9766","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-monitoring","category-howtos","tag-install-ntopng-rocky-linux-8","tag-ntopng","tag-ntopng-community-version","tag-rocky-linux-8","tag-setup-ntopng-rocky-linux","generate-columns","tablet-grid-50","mobile-grid-100","grid-parent","grid-50","resize-featured-image"],"_links":{"self":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts\/9766"}],"collection":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/comments?post=9766"}],"version-history":[{"count":3,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts\/9766\/revisions"}],"predecessor-version":[{"id":21721,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/posts\/9766\/revisions\/21721"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/media\/9779"}],"wp:attachment":[{"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/media?parent=9766"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/categories?post=9766"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kifarunix.com\/wp-json\/wp\/v2\/tags?post=9766"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}