search

ntop / ntopng

Web-based Traffic and Security Network Traffic Monitoring
http://www.ntop.org
GNU General Public License v3.0
6.25k stars 655 forks source link

Vlan trunking ntopng edge #1898

Closed tomoxwell closed 6 years ago

tomoxwell commented 6 years ago

I am trying to implement vlan trunking for the upgraded ntopng edge. I have two ports eno3 for Wan and eno 2 for Lan but all of them are trunk ports. I have also configured a management interface on eno1. My ntopng.conf is as follows:

#         The  configuration  file is similar to the command line, with the exception that an equal
#        sign '=' must be used between key and value. Example:  -i=p1p2  or  --interface=p1p2  For
#        options with no value (e.g. -v) the equal is also necessary. Example: "-v=" must be used.
#
#
#       -G|--pid-path
#        Specifies the path where the PID (process ID) is saved. This option is ignored when
#        ntopng is controlled with systemd (e.g., service ntopng start).
#
-G=/var/run/ntopng.pid
#
#       -e|--daemon
#        This  parameter  causes ntop to become a daemon, i.e. a task which runs in the background
#        without connection to a specific terminal. To use ntop other than as a casual  monitoring
#        tool, you probably will want to use this option. This option is ignored when ntopng is
#        controlled with systemd (e.g., service ntopng start)
#
# -e=
#
#       -i|--interface
#        Specifies the NETFILTER queue used by ntopng. The format is nf:<queue_id> (e.g., nf:0).
#
 -i=nf:0

# -i=bridge:eno2,eno3

# -i=eno1
#  -i=eno2
#  -i=eno3

#
#       -w|--http-port
#        Sets the HTTP port of the embedded web server. To be able to use ntopng internal captive
#        portal, two ports must be specified, the first one being the port of the captive portal
#        users (typically port 80) and the second one being the port of the ntopng embedded web
#        server.
#
#-w=3000
#-w=80,3000
 --http-port=3000

#       -W|--https-port
#        Sets the HTTPs port of the embedded web server for the captive portal.
#
#-W=443,3001
 --https-port=3001

#
#       -m|--local-networks
#        ntopng determines the ip addresses and netmasks for each active interface. Any traffic on
#        those  networks  is considered local. This parameter allows the user to define additional
#        networks and subnetworks whose traffic is also considered local in  ntopng  reports.  All
#        other hosts are considered remote. If not specified the default is set to 192.168.1.0/24.
#
#        Commas  separate  multiple  network  values.  Both netmask and CIDR notation may be used,
#        even mixed together, for instance "131.114.21.0/24,10.0.0.0/255.0.0.0".
#
 -m="10.0.1.0/24,10.2.0.0/22,10.4.0.0/22,10.0.6.0/24,10.0.7.0/24,10.0.8.0/24"

# -m=10.10.123.0/24
# -m=10.10.124.0/24
#
#       -n|--dns-mode
#        Sets the DNS address resolution mode: 0 - Decode DNS responses  and  resolve  only  local
#        (-m)  numeric  IPs  1  -  Decode DNS responses and resolve all numeric IPs 2 - Decode DNS
#        responses and don't resolve numeric IPs 3 - Don't decode DNS responses and don't  resolve
#
# -n=1
#
#       -S|--sticky-hosts
#        ntopng  periodically purges idle hosts. With this option you can modify this behaviour by
#        telling ntopng not to purge the hosts specified by -S. This parameter requires  an  argu-
#        ment  that  can  be  "all"  (Keep  all hosts in memory), "local" (Keep only local hosts),
#        "remote" (Keep only remote hosts), "none" (Flush hosts when idle).
#
# -S=
#
#       -d|--data-dir
#        Specifies the data directory (it must be writable by the user that is executing ntopng).
#
# -d=/var/tmp/ntopng
#
#       -q|--disable-autologout
#        Disable web interface logout for inactivity.

# -q=

#--user="root"

#
#

The network config is as follows:

nedge.conf:
auto eno3
iface eno3 inet manual

auto eno2
iface eno2 inet manual

auto br0
iface br0 inet manual
    bridge_ports eno3 eno2
    bridge_stp off

auto br0:2
iface br0:2 inet static
    address 192.168.160.10
    netmask 255.255.255.0
nedge_mgmt.conf:
auto br0.7
iface br0.7 inet static
     pre-up /sbin/ip link add link br0 name br0.7 type vlan id 7
     vlan-raw-device br0
     address 10.0.X.X

     netmask 255.255.255.0

I get the error on the LAN interface as follows:

Aug 03 00:22:44 sapphire ntopng[4508]: 03/Aug/2018 00:22:44 [PeriodicActivities.cpp:59] Started periodic activities loop... Aug 03 00:22:46 sapphire ntopng[4508]: 03/Aug/2018 00:22:44 [startup.lua:14] [nf_config.lua:598] WARNING: Cannot get LAN interface br0 address Aug 03 00:22:46 sapphire ntopng[4508]: 03/Aug/2018 00:22:46 [PeriodicActivities.cpp:100] Each periodic activity script will use 2 threads Aug 03 00:22:46 sapphire ntopng[4508]: 03/Aug/2018 00:22:46 [NetworkInterface.cpp:2505] Started packet polling on interface nf:0 [id: 2]...

I don't seem to understand where I am going wrong.

emanuele-f commented 6 years ago

What is the LAN interface specified in the nedge system setup?

tomoxwell commented 6 years ago

eno3

10.0.7.38

255.255.255.0

On 3 Aug 2018, at 10:43, Emanuele Faranda notifications@github.com wrote:

What is the LAN interface specified in the nedge system setup?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-410173066, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndYZPa1-Jx8UFBgdFssrLO8N-DU11ks5uM_8VgaJpZM4VtB0i.

tomoxwell commented 6 years ago

With vlan Trunking in bridge mode . They advised us to configure a management interface separately in

/etc/network/interfaces.d/nedge_mgmt.conf

which i did as follows

auto br0.7

iface br0.7 inet static

 pre-up /sbin/ip link add link br0 name br0.7 type vlan id 7

 vlan-raw-device br0

 address 10.0.7.38

 netmask 255.255.255.0

On Fri, Aug 3, 2018 at 10:44 AM, Tom Ongaro tomo@maxwellsda.org wrote:

eno3

10.0.7.38

255.255.255.0

On 3 Aug 2018, at 10:43, Emanuele Faranda notifications@github.com wrote:

What is the LAN interface specified in the nedge system setup?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-410173066, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndYZPa1-Jx8UFBgdFssrLO8N-DU11ks5uM_8VgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

emanuele-f commented 6 years ago

Apart from the error, are you able to see the clients traffic and apply policies? Clients are expected to be located on the trunk on eno3 (you can set policies on them), whereas the internet is located on the eno2

tomoxwell commented 6 years ago

The problem is that when i connect my WAN which comes as a trunk carrying 7 vans from pfsense firewall to port eno2 and then connect port eno3(which is also a trunk port) which connects to my cisco switch(the core switch that connects all the other switches that server the clients) i loose connectivity. Do i need to do anything to ports eno2 and eno3 for the trunks to work other than what the gui does under interface configuration?

emanuele-f commented 6 years ago

So you lose connectivity for the nedge management? Are you connected on VLAN 7?

tomoxwell commented 6 years ago

Yes. I lose connectivity to the management interface and all the clients also loose connectivity. I am connected on vlan 7. Meanwhile I a planning to do a factory reset as per your first suggestion .

tomoxwell commented 6 years ago

I get this after a factory reset

Aug 03 13:24:58 sapphire ntopng[3887]: 03/Aug/2018 13:24:58 [LuaEngine.cpp:7459] Enable interface eno4 Aug 03 13:24:59 sapphire ntopng[3887]: RTNETLINK answers: Network is down Aug 03 13:24:59 sapphire ntopng[3887]: RTNETLINK answers: Network is down Aug 03 13:24:59 sapphire ntopng[3887]: 03/Aug/2018 13:24:59 [NetfilterInterface.cpp:561] Succesfully connected to NF_QUEUE 0 Aug 03 13:24:59 sapphire ntopng[3887]: 03/Aug/2018 13:24:59 [NetfilterInterface.cpp:583] WARNING: Disabling user change as otherwise netfilter won't work Aug 03 13:24:59 sapphire ntopng[3887]: [NetfilterInterface.cpp:583] WARNING: Disabling user change as otherwise netfilter won't work Aug 03 13:24:59 sapphire ntopng[3887]: 03/Aug/2018 13:24:59 [NetworkDiscovery.cpp:44] ERROR: Unable to create pcap socket on br0.7 [95/Operation not supported] Aug 03 13:24:59 sapphire ntopng[3887]: [NetworkDiscovery.cpp:44] ERROR: Unable to create pcap socket on br0.7 [95/Operation not supported] Aug 03 13:24:59 sapphire ntopng[3887]: 03/Aug/2018 13:24:59 [main.cpp:280] ERROR: Startup error: missing super-user privileges ? Aug 03 13:24:59 sapphire ntopng[3887]: [main.cpp:280] ERROR: Startup error: missing super-user privileges ?

emanuele-f commented 6 years ago

Please post a screenshot of your network configuration and network interfaces pages into the nedge system setup

tomoxwell commented 6 years ago

after a factory reset i get the following error

03/Aug/2018 15:09:45 [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.1.1:3000: Success

Aug 03 15:09:45 sapphire ntopng[6337]: [HTTPserver.cpp:893] ERROR: [HTTP] set_ports_option: cannot bind to 192.168.1.1:3000 http://192.168.1.1:3000: Cannot assign requested address

Aug 03 15:09:45 sapphire ntopng[6337]: [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.1.1:3000 http://192.168.1.1:3000: Success

Aug 03 15:09:45 sapphire ntopng[6337]: 03/Aug/2018 15:09:45 [HTTPserver.cpp:1056] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.1.1:3000,192.168.1.1:3001s

Aug 03 15:09:45 sapphire ntopng[6337]: 03/Aug/2018 15:09:45 [HTTPserver.cpp:1062] ERROR: Either port in use or another ntopng instance is running (using the same port)

Aug 03 15:09:45 sapphire ntopng[6337]: [HTTPserver.cpp:1056] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.1.1:3000 http://192.168.1.1:3000,192.168.1.1:3001s

Aug 03 15:09:45 sapphire ntopng[6337]: [HTTPserver.cpp:1062] ERROR: Either port in use or another ntopng instance is running (using the same port)

Aug 03 15:09:45 sapphire systemd[1]: ntopng.service: Main process exited, code=exited, status=255/n/a

Aug 03 15:09:45 sapphire systemd[1]: ntopng.service: Unit entered failed state.

Aug 03 15:09:45 sapphire systemd[1]: ntopng.service: Failed with result 'exit-code'.

so i cant access the gui now

My network configs are as follows: nedge.conf:

auto eno3

iface eno3 inet manual

auto eno2

iface eno2 inet manual

auto br0

iface br0 inet manual

bridge_ports eno3 eno2

bridge_stp off

auto br0:2

iface br0:2 inet static

address 192.168.160.10

netmask 255.255.255.0

network/interfaces:

auto lo

iface lo inet loopback

The primary network interface

auto eno1

iface eno1 inet static

address 10.0.7.38

netmask 255.255.255.0

broadcast 10.0.7.255

gateway 10.0.7.1

dns-nameservers 10.0.7.6 8.8.8.8

On Fri, Aug 3, 2018 at 3:02 PM, Emanuele Faranda notifications@github.com wrote:

Please post a screenshot of your network configuration and network interfaces pages into the nedge system setup

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-410232798, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndblcqGCSPrHTd_S2WV7B0inp02Dnks5uNDu4gaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

tomoxwell commented 6 years ago

/etc/network/interfaces.d/nedge_mgmt.conf

auto br0.7 iface br0.7 inet static pre-up /sbin/ip link add link br0 name br0.7 type vlan id 7 vlan-raw-device br0 address 10.0.7.38 netmask 255.255.255.0

emanuele-f commented 6 years ago

It seems like another nedge/ntopng instance is running at the same time. Please run systemctl stop ntopng and systemctl stop nedge. Then double check with pgrep ntopng that no other instance is running. Then start again with systemctl start nedge.

tomoxwell commented 6 years ago

Just wondering why its pointing to 192.168.1.1 whereas the recovery ip is 192.168.160.1. look at the error below: Aug 03 15:38:48 sapphire ntopng[7186]: 03/Aug/2018 15:38:48 [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.1.1:3000: Success Aug 03 15:38:48 sapphire ntopng[7186]: [HTTPserver.cpp:893] ERROR: [HTTP] set_ports_option: cannot bind to 192.168.1.1:3000: Cannot assign requested address Aug 03 15:38:48 sapphire ntopng[7186]: [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.1.1:3000: Success Aug 03 15:38:48 sapphire ntopng[7186]: 03/Aug/2018 15:38:48 [HTTPserver.cpp:1056] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.1.1:3000,192.168.1.1:3001s Aug 03 15:38:48 sapphire ntopng[7186]: 03/Aug/2018 15:38:48 [HTTPserver.cpp:1062] ERROR: Either port in use or another ntopng instance is running (using the same port) Aug 03 15:38:48 sapphire ntopng[7186]: [HTTPserver.cpp:1056] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.1.1:3000,192.168.1.1:3001s Aug 03 15:38:48 sapphire ntopng[7186]: [HTTPserver.cpp:1062] ERROR: Either port in use or another ntopng instance is running (using the same port) Aug 03 15:38:48 sapphire systemd[1]: ntopng.service: Main process exited, code=exited, status=255/n/a Aug 03 15:38:48 sapphire systemd[1]: ntopng.service: Unit entered failed state. Aug 03 15:38:48 sapphire systemd[1]: ntopng.service: Failed with result 'exit-code'

tomoxwell commented 6 years ago

the 192.168.1.1 is nowhere in my configs

emanuele-f commented 6 years ago

Please remove the package and start with a clean setup. Double check all the system setup parameters before applying the changes during first start.

tomoxwell commented 6 years ago

Thanks for the info. How do I completely uninstall and reinstall the packages . Kindly share the commands for completely uninstalling everything.

Sent from my iPhone

On Aug 3, 2018, at 15:30, Emanuele Faranda notifications@github.com wrote:

It seems like another nedge/ntopng instance is running at the same time. Please run systemctl stop ntopng and systemctl stop nedge. Then double check with pgrep ntopng that no other instance is running. Then start again with systemctl start nedge.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub, or mute the thread.

tomoxwell commented 6 years ago

I removed everything i.e even reinstalled ubuntu 16 and then reinstalled edge and i get this error:

root@sapphire:/home/tomo# systemctl restart ntopng

root@sapphire:/home/tomo# systemctl status ntopng

ntopng.service - ntopng high-speed web-based traffic monitoring and analysis tool

Loaded: loaded (/etc/systemd/system/ntopng.service; enabled; vendor preset: enabled)

Active: failed (Result: exit-code) since Sun 2018-08-05 03:34:59 EAT; 5s ago

Process: 4756 ExecStopPost=/bin/sh -c /bin/echo "$(/bin/date) ntopng StopPost" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 4752 ExecStopPost=/bin/rm -rf /run/ntopng.conf (code=exited, status=0/SUCCESS)

Process: 4500 ExecStartPost=/bin/sh -c /bin/echo "$(/bin/date) ntopng StartPost" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 4499 ExecStart=/usr/local/bin/ntopng /run/ntopng.conf (code=exited, status=255)

Process: 4494 ExecStartPre=/bin/sh -c /bin/sed "/^[ ]-e.$|^[ ]-G.|^[ ]--daemon.|^[ ]--pid./s/^/#/" /etc/ntopng/ntopng.conf > /run/ntopng.conf (code=exited, status=0/SUCCESS)

Process: 4488 ExecStartPre=/bin/sh -c /bin/echo "$(/bin/date) ntopng StartPre" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 4485 ExecStartPre=/bin/sh -c [ -f /etc/ntopng/conf.tar.gz ] && rm /etc/ntopng/conf.tar.gz || true (code=exited, status=0/SUCCESS)

Process: 4478 ExecStartPre=/bin/sh -c DATA_DIR=$(cat /etc/ntopng/ntopng.conf | sed -n -e "s/^(-d|--data-dir)[ =]//p"); if [ ! $DATA_DIR ]; then DATA_DIR="/var/tmp"; fi; [ -f /etc/nto

Process: 4473 ExecStartPre=/bin/sh -c BIN_TAR=/bin/tar; if [ ! -f $BIN_TAR ]; then BIN_TAR=/usr/bin/tar; fi; [ -f /etc/ntopng/conf.tar.gz ] && $BIN_TAR -xzf /etc/ntopng/conf.tar.gz -C /

Main PID: 4499 (code=exited, status=255)

Aug 05 03:34:59 sapphire ntopng[4499]: 05/Aug/2018 03:34:59 [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.20.1:3000: Success

Aug 05 03:34:59 sapphire ntopng[4499]: [HTTPserver.cpp:903] ERROR: [HTTP] set_ports_option: cannot bind to 192.168.20.1:3000 http://192.168.20.1:3000: Cannot assign requested address

Aug 05 03:34:59 sapphire ntopng[4499]: [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.20.1:3000 http://192.168.20.1:3000: Success

Aug 05 03:34:59 sapphire ntopng[4499]: 05/Aug/2018 03:34:59 [HTTPserver.cpp:1066] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.20.1:3000,192.168.20.1:3001s

Aug 05 03:34:59 sapphire ntopng[4499]: 05/Aug/2018 03:34:59 [HTTPserver.cpp:1072] ERROR: Either port in use or another ntopng instance is running (using the same port)

Aug 05 03:34:59 sapphire ntopng[4499]: [HTTPserver.cpp:1066] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.20.1:3000 http://192.168.20.1:3000,192.168.20.1:3001s

Aug 05 03:34:59 sapphire ntopng[4499]: [HTTPserver.cpp:1072] ERROR: Either port in use or another ntopng instance is running (using the same port)

Aug 05 03:34:59 sapphire systemd[1]: ntopng.service: Main process exited, code=exited, status=255/n/a

Aug 05 03:34:59 sapphire systemd[1]: ntopng.service: Unit entered failed state.

Aug 05 03:34:59 sapphire systemd[1]: ntopng.service: Failed with result 'exit-code'.

On Fri, Aug 3, 2018 at 6:05 PM, Maxwell tomo@maxwellsda.org wrote:

Thanks for the info. How do I completely uninstall and reinstall the packages . Kindly share the commands for completely uninstalling everything.

Sent from my iPhone

On Aug 3, 2018, at 15:30, Emanuele Faranda notifications@github.com wrote:

It seems like another nedge/ntopng instance is running at the same time. Please run systemctl stop ntopng and systemctl stop nedge. Then double check with pgrep ntopng that no other instance is running. Then start again with systemctl start nedge.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-410238781, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndSl3u7MlKrndDyl3yPZly1mAaukcks5uNEJJgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

tomoxwell commented 6 years ago

I have no idea where the 192.168.20.1 address is coming from. I cant also access the gui

On Sun, Aug 5, 2018 at 3:37 AM, Tom Ongaro tomo@maxwellsda.org wrote:

I removed everything i.e even reinstalled ubuntu 16 and then reinstalled edge and i get this error:

root@sapphire:/home/tomo# systemctl restart ntopng

root@sapphire:/home/tomo# systemctl status ntopng

ntopng.service - ntopng high-speed web-based traffic monitoring and analysis tool

Loaded: loaded (/etc/systemd/system/ntopng.service; enabled; vendor preset: enabled)

Active: failed (Result: exit-code) since Sun 2018-08-05 03:34:59 EAT; 5s ago

Process: 4756 ExecStopPost=/bin/sh -c /bin/echo "$(/bin/date) ntopng StopPost" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 4752 ExecStopPost=/bin/rm -rf /run/ntopng.conf (code=exited, status=0/SUCCESS)

Process: 4500 ExecStartPost=/bin/sh -c /bin/echo "$(/bin/date) ntopng StartPost" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 4499 ExecStart=/usr/local/bin/ntopng /run/ntopng.conf (code=exited, status=255)

Process: 4494 ExecStartPre=/bin/sh -c /bin/sed "/^[ ]-e.$|^[ ]-G.|^[ ]--daemon.|^[ ]--pid./s/^/#/" /etc/ntopng/ntopng.conf > /run/ntopng.conf (code=exited, status=0/SUCCESS)

Process: 4488 ExecStartPre=/bin/sh -c /bin/echo "$(/bin/date) ntopng StartPre" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 4485 ExecStartPre=/bin/sh -c [ -f /etc/ntopng/conf.tar.gz ] && rm /etc/ntopng/conf.tar.gz || true (code=exited, status=0/SUCCESS)

Process: 4478 ExecStartPre=/bin/sh -c DATA_DIR=$(cat /etc/ntopng/ntopng.conf | sed -n -e "s/^(-d|--data-dir)[ =]//p"); if [ ! $DATA_DIR ]; then DATA_DIR="/var/tmp"; fi; [ -f /etc/nto

Process: 4473 ExecStartPre=/bin/sh -c BIN_TAR=/bin/tar; if [ ! -f $BIN_TAR ]; then BIN_TAR=/usr/bin/tar; fi; [ -f /etc/ntopng/conf.tar.gz ] && $BIN_TAR -xzf /etc/ntopng/conf.tar.gz -C /

Main PID: 4499 (code=exited, status=255)

Aug 05 03:34:59 sapphire ntopng[4499]: 05/Aug/2018 03:34:59 [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.20.1:3000: Success

Aug 05 03:34:59 sapphire ntopng[4499]: [HTTPserver.cpp:903] ERROR: [HTTP] set_ports_option: cannot bind to 192.168.20.1:3000 http://192.168.20.1:3000: Cannot assign requested address

Aug 05 03:34:59 sapphire ntopng[4499]: [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.20.1:3000 http://192.168.20.1:3000: Success

Aug 05 03:34:59 sapphire ntopng[4499]: 05/Aug/2018 03:34:59 [HTTPserver.cpp:1066] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.20.1:3000,192.168.20.1:3001s

Aug 05 03:34:59 sapphire ntopng[4499]: 05/Aug/2018 03:34:59 [HTTPserver.cpp:1072] ERROR: Either port in use or another ntopng instance is running (using the same port)

Aug 05 03:34:59 sapphire ntopng[4499]: [HTTPserver.cpp:1066] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.20.1:3000 http://192.168.20.1:3000,192.168.20.1:3001s

Aug 05 03:34:59 sapphire ntopng[4499]: [HTTPserver.cpp:1072] ERROR: Either port in use or another ntopng instance is running (using the same port)

Aug 05 03:34:59 sapphire systemd[1]: ntopng.service: Main process exited, code=exited, status=255/n/a

Aug 05 03:34:59 sapphire systemd[1]: ntopng.service: Unit entered failed state.

Aug 05 03:34:59 sapphire systemd[1]: ntopng.service: Failed with result 'exit-code'.

On Fri, Aug 3, 2018 at 6:05 PM, Maxwell tomo@maxwellsda.org wrote:

Thanks for the info. How do I completely uninstall and reinstall the packages . Kindly share the commands for completely uninstalling everything.

Sent from my iPhone

On Aug 3, 2018, at 15:30, Emanuele Faranda notifications@github.com wrote:

It seems like another nedge/ntopng instance is running at the same time. Please run systemctl stop ntopng and systemctl stop nedge. Then double check with pgrep ntopng that no other instance is running. Then start again with systemctl start nedge.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-410238781, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndSl3u7MlKrndDyl3yPZly1mAaukcks5uNEJJgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

tomoxwell commented 6 years ago

the i type ntopng --http-port 3000

i get the following

05/Aug/2018 04:03:33 [Ntop.cpp:1567] Setting local networks to 127.0.0.0/8

05/Aug/2018 04:03:33 [Redis.cpp:127] Successfully connected to redis 127.0.0.1:6379@0

05/Aug/2018 04:03:33 [Redis.cpp:127] Successfully connected to redis 127.0.0.1:6379@0

05/Aug/2018 04:03:33 [NtopPro.cpp:312] [LICENSE] Reading license from /etc/nedge.license

05/Aug/2018 04:03:33 [NtopPro.cpp:208] [LICENSE] /etc/nedge.license: found valid Edge Enterprise license

05/Aug/2018 04:03:33 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface eno2 address

05/Aug/2018 04:03:34 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface eno2 address

05/Aug/2018 04:03:34 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface eno2 address

05/Aug/2018 04:03:34 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface eno2 address

05/Aug/2018 04:03:35 [main.cpp:280] ERROR: Startup error: missing super-user privileges ?

On Sun, Aug 5, 2018 at 3:37 AM, Tom Ongaro tomo@maxwellsda.org wrote:

I have no idea where the 192.168.20.1 address is coming from. I cant also access the gui

On Sun, Aug 5, 2018 at 3:37 AM, Tom Ongaro tomo@maxwellsda.org wrote:

I removed everything i.e even reinstalled ubuntu 16 and then reinstalled edge and i get this error:

root@sapphire:/home/tomo# systemctl restart ntopng

root@sapphire:/home/tomo# systemctl status ntopng

ntopng.service - ntopng high-speed web-based traffic monitoring and analysis tool

Loaded: loaded (/etc/systemd/system/ntopng.service; enabled; vendor preset: enabled)

Active: failed (Result: exit-code) since Sun 2018-08-05 03:34:59 EAT; 5s ago

Process: 4756 ExecStopPost=/bin/sh -c /bin/echo "$(/bin/date) ntopng StopPost" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 4752 ExecStopPost=/bin/rm -rf /run/ntopng.conf (code=exited, status=0/SUCCESS)

Process: 4500 ExecStartPost=/bin/sh -c /bin/echo "$(/bin/date) ntopng StartPost" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 4499 ExecStart=/usr/local/bin/ntopng /run/ntopng.conf (code=exited, status=255)

Process: 4494 ExecStartPre=/bin/sh -c /bin/sed "/^[ ]-e.$|^[ ]-G.|^[ ]--daemon.|^[ ]--pid./s/^/#/" /etc/ntopng/ntopng.conf > /run/ntopng.conf (code=exited, status=0/SUCCESS)

Process: 4488 ExecStartPre=/bin/sh -c /bin/echo "$(/bin/date) ntopng StartPre" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 4485 ExecStartPre=/bin/sh -c [ -f /etc/ntopng/conf.tar.gz ] && rm /etc/ntopng/conf.tar.gz || true (code=exited, status=0/SUCCESS)

Process: 4478 ExecStartPre=/bin/sh -c DATA_DIR=$(cat /etc/ntopng/ntopng.conf | sed -n -e "s/^(-d|--data-dir)[ =]//p"); if [ ! $DATA_DIR ]; then DATA_DIR="/var/tmp"; fi; [ -f /etc/nto

Process: 4473 ExecStartPre=/bin/sh -c BIN_TAR=/bin/tar; if [ ! -f $BIN_TAR ]; then BIN_TAR=/usr/bin/tar; fi; [ -f /etc/ntopng/conf.tar.gz ] && $BIN_TAR -xzf /etc/ntopng/conf.tar.gz -C /

Main PID: 4499 (code=exited, status=255)

Aug 05 03:34:59 sapphire ntopng[4499]: 05/Aug/2018 03:34:59 [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.20.1:3000: Success

Aug 05 03:34:59 sapphire ntopng[4499]: [HTTPserver.cpp:903] ERROR: [HTTP] set_ports_option: cannot bind to 192.168.20.1:3000 http://192.168.20.1:3000: Cannot assign requested address

Aug 05 03:34:59 sapphire ntopng[4499]: [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.20.1:3000 http://192.168.20.1:3000: Success

Aug 05 03:34:59 sapphire ntopng[4499]: 05/Aug/2018 03:34:59 [HTTPserver.cpp:1066] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.20.1:3000,192.168.20.1:3001s

Aug 05 03:34:59 sapphire ntopng[4499]: 05/Aug/2018 03:34:59 [HTTPserver.cpp:1072] ERROR: Either port in use or another ntopng instance is running (using the same port)

Aug 05 03:34:59 sapphire ntopng[4499]: [HTTPserver.cpp:1066] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.20.1:3000 http://192.168.20.1:3000,192.168.20.1:3001s

Aug 05 03:34:59 sapphire ntopng[4499]: [HTTPserver.cpp:1072] ERROR: Either port in use or another ntopng instance is running (using the same port)

Aug 05 03:34:59 sapphire systemd[1]: ntopng.service: Main process exited, code=exited, status=255/n/a

Aug 05 03:34:59 sapphire systemd[1]: ntopng.service: Unit entered failed state.

Aug 05 03:34:59 sapphire systemd[1]: ntopng.service: Failed with result 'exit-code'.

On Fri, Aug 3, 2018 at 6:05 PM, Maxwell tomo@maxwellsda.org wrote:

Thanks for the info. How do I completely uninstall and reinstall the packages . Kindly share the commands for completely uninstalling everything.

Sent from my iPhone

On Aug 3, 2018, at 15:30, Emanuele Faranda notifications@github.com wrote:

It seems like another nedge/ntopng instance is running at the same time. Please run systemctl stop ntopng and systemctl stop nedge. Then double check with pgrep ntopng that no other instance is running. Then start again with systemctl start nedge.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-410238781, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndSl3u7MlKrndDyl3yPZly1mAaukcks5uNEJJgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

emanuele-f commented 6 years ago

Please let me clarify the initial steps with nedge: 1) Create the file /etc/network/interfaces.d/nedge_mgmt.conf with the management interface. Then reboot the device. You must be able to reach the device now via the specified management address. 2) Install nedge from our repository with apt-get install nedge. The service is started automatically. 3) Connect to the nedge gui via the machine IP, port 3000 4) The page "System Setup" will be shown, where you can specify your configuration. In this case, Vlan trunk mode is enabled. 5) Click "Apply" to apply the settings. The device will reboot.

After step 5, you will be able to reach the nedge gui the same way as step 1, as long as the specified management interface does not conflicts with the nedge specified interfaces. Ideally you have a dedicated management interface (e.g. eno3) for this.

tomoxwell commented 6 years ago

Much appreciated. Let me do these steps and then get back to you.

On Mon, Aug 6, 2018 at 10:56 AM, Emanuele Faranda notifications@github.com wrote:

Please let me clarify the initial steps with nedge:

  1. Create the file /etc/network/interfaces.d/nedge_mgmt.conf with the management interface. Then reboot the device. You must be able to reach the device now via the specified management address.
  2. Install nedge from our repository with apt-get install nedge. The service is started automatically.
  3. Connect to the nedge gui via the machine IP, port 3000
  4. The page "System Setup" will be shown, where you can specify your configuration. In this case, Vlan trunk mode is enabled.
  5. Click "Apply" to apply the settings. The device will reboot.

After step 5, you will be able to reach the nedge gui the same way as step 1, as long as the specified management interface does not conflicts with the nedge specified interfaces. Ideally you have a dedicated management interface (e.g. eno3) for this.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-410620812, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndQliq7Zbl8HkWS4g0HYlUiM1FNkEks5uN_adgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

tomoxwell commented 6 years ago

I have just installed a fresh Ubuntu 16 with just a management interface. i just want to be clear on step one. If i configure /etc/network/interfaces.d/nedge_mgmt.conf will this work with ubuntu before I install nedge?

On Mon, Aug 6, 2018 at 10:56 AM, Emanuele Faranda notifications@github.com wrote:

Please let me clarify the initial steps with nedge:

  1. Create the file /etc/network/interfaces.d/nedge_mgmt.conf with the management interface. Then reboot the device. You must be able to reach the device now via the specified management address.
  2. Install nedge from our repository with apt-get install nedge. The service is started automatically.
  3. Connect to the nedge gui via the machine IP, port 3000
  4. The page "System Setup" will be shown, where you can specify your configuration. In this case, Vlan trunk mode is enabled.
  5. Click "Apply" to apply the settings. The device will reboot.

After step 5, you will be able to reach the nedge gui the same way as step 1, as long as the specified management interface does not conflicts with the nedge specified interfaces. Ideally you have a dedicated management interface (e.g. eno3) for this.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-410620812, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndQliq7Zbl8HkWS4g0HYlUiM1FNkEks5uN_adgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

tomoxwell commented 6 years ago

The management interface example uses a bridge br0 as from the documentation: auto br0.86 iface br0.86 inet static pre-up /sbin/ip link add link br0 name br0.86 type vlan id 86 vlan-raw-device br0 address 10.10.10.1 netmask 255.255.255.0

Do i then need to configure a bridge first in a freshly installed ubuntu 16 before i configure the management interface?

tomoxwell commented 6 years ago

seems like step one is the real issue here

emanuele-f commented 6 years ago

Yes, if the management interface is a bridge, then it must be configured as well. Please configure it in /etc/network/interfaces directly, otherwise it will conflict with nedge. However, I think you can create the vlan interface directly on the eno2/eno1 device and specify a "vlan-raw-device eno1" for a simpler setup.

tomoxwell commented 6 years ago

I was only thinking of the bridge because of the nature of the error when i type: ntopng -v -G /var/run/ntopng.pid -i 1 -s

I get : 06/Aug/2018 18:24:42 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface br0 address 06/Aug/2018 18:24:42 [boot.lua:22] [nf_config.lua:405] WARNING: Cannot determine LAN network. Falling back to default 192.168.1.0/24 06/Aug/2018 18:24:42 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface br0 address 06/Aug/2018 18:24:42 [boot.lua:22] [nf_config.lua:405] WARNING: Cannot determine LAN network. Falling back to default 192.168.1.0/24 06/Aug/2018 18:24:42 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface br0 address 06/Aug/2018 18:24:42 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface br0 address

tomoxwell commented 6 years ago

I would prefer the simple set up you suggested. right now my management interface is eno1 and i would like to eno2 and eno3 to be Wan and Lan interfaces respectively. Do you have a sample on how i should set up the management vlan running on vlan 8 but on interface eno1?

tomoxwell commented 6 years ago

I did this one eno1:

auto eno1 iface eno1 inet manual

auto eno1.8 iface eno1.8 inet static vlan-raw-device eno1 address 10.0.8.38 netmask 255.255.255.0

and step one was accomplished well as i could ssh into the machine using 10.0.8.38

tomoxwell commented 6 years ago

I then did step 2 but then I cant access the gui . I get the usual error: Aug 06 21:36:02 sapphire ntopng[2970]: 06/Aug/2018 21:36:02 [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.20.1:3000: Success Aug 06 21:36:02 sapphire ntopng[2970]: [HTTPserver.cpp:903] ERROR: [HTTP] set_ports_option: cannot bind to 192.168.20.1:3000: Cannot assign requested address Aug 06 21:36:02 sapphire ntopng[2970]: [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.20.1:3000: Success Aug 06 21:36:02 sapphire ntopng[2970]: 06/Aug/2018 21:36:02 [HTTPserver.cpp:1066] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.20.1:3000,192.168.20.1:443s Aug 06 21:36:02 sapphire ntopng[2970]: 06/Aug/2018 21:36:02 [HTTPserver.cpp:1072] ERROR: Either port in use or another ntopng instance is running (using the same port) Aug 06 21:36:02 sapphire ntopng[2970]: [HTTPserver.cpp:1066] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.20.1:3000,192.168.20.1:443s Aug 06 21:36:02 sapphire ntopng[2970]: [HTTPserver.cpp:1072] ERROR: Either port in use or another ntopng instance is running (using the same port)

emanuele-f commented 6 years ago

What's the output of ntopng --version?

tomoxwell commented 6 years ago

ntopng: unrecognized option '--version?' 07/Aug/2018 12:58:34 [Ntop.cpp:1567] Setting local networks to 127.0.0.0/8 07/Aug/2018 12:58:34 [Redis.cpp:127] Successfully connected to redis 127.0.0.1:6379@0 07/Aug/2018 12:58:34 [Redis.cpp:127] Successfully connected to redis 127.0.0.1:6379@0 07/Aug/2018 12:58:34 [NtopPro.cpp:310] [LICENSE] Reading license from Redis 07/Aug/2018 12:58:34 [NtopPro.cpp:451] WARNING: [LICENSE] Invalid or missing license 07/Aug/2018 12:58:34 [NtopPro.cpp:464] WARNING: [LICENSE] ntopng edge will now run in demo mode for 10 minutes 07/Aug/2018 12:58:34 [NtopPro.cpp:466] WARNING: [LICENSE] before stop working 07/Aug/2018 12:58:34 [NtopPro.cpp:472] WARNING: [LICENSE] You can buy a permanent license at http://shop.ntop.org 07/Aug/2018 12:58:34 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface br0 address 07/Aug/2018 12:58:34 [boot.lua:22] [nf_config.lua:405] WARNING: Cannot determine LAN network. Falling back to default 192.168.1.0/24 07/Aug/2018 12:58:34 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface br0 address 07/Aug/2018 12:58:34 [boot.lua:22] [nf_config.lua:405] WARNING: Cannot determine LAN network. Falling back to default 192.168.1.0/24 07/Aug/2018 12:58:34 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface br0 address 07/Aug/2018 12:58:34 [boot.lua:22] [nf_config.lua:598] WARNING: Cannot get LAN interface br0 address 07/Aug/2018 12:58:35 [main.cpp:280] ERROR: Startup error: missing super-user privileges ?

tomoxwell commented 6 years ago

root@sapphire:/home/tomo# ntopng --version v.3.5.180807 [Edge build] GIT rev: dev:ff8719615c02d55ab275cc8ba1a4b4aafee0c9dd:20180807 Pro rev: r1802 Built on: Ubuntu 16.04.5 LTS System Id: 6DF0BE76B205A206 Platform: x86_64 Edition: Edge Enterprise License Type: Permanent Maintenance: Until Tue Jul 30 04:38:24 2019 [356 days left] License: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

tomoxwell commented 6 years ago

v.3.5.180807 [Edge build]

GIT rev: dev:ff8719615c02d55ab275cc8ba1a4b4aafee0c9dd:20180807

Pro rev: r1802

Built on: Ubuntu 16.04.5 LTS

System Id: 6DF0BE7

Platform: x86_64

Edition: Edge Enterprise

License Type: Permanent

Maintenance: Until Tue Jul 30 04:38:24 2019 [356 days left]

License: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

On Tue, Aug 7, 2018 at 12:23 PM, Emanuele Faranda notifications@github.com wrote:

What's the output of ntopng --version?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-410993129, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndYO84hNse-FnsVUxzJYjtXeOz4XIks5uOVyigaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

emanuele-f commented 6 years ago

Can try removing the --https-port option from /etc/ntopng/ntopng.conf and restart nedge with sudo systemctl restart ntopng?

tomoxwell commented 6 years ago

Just done that and the error is the same

tomoxwell commented 6 years ago

Same error as before.

On Tue, Aug 7, 2018 at 1:41 PM, Emanuele Faranda notifications@github.com wrote:

Can try removing the --https-port option from /etc/ntopng/ntopng.conf and restart nedge with sudo systemctl restart ntopng?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-411014230, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndeg09WAA-HB02aNcTidbOOyRez5Hks5uOW7lgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

tomoxwell commented 6 years ago

This specific error began after the advised factory reset.

On Tue, Aug 7, 2018 at 1:57 PM, Tom Ongaro tomo@maxwellsda.org wrote:

Same error as before.

On Tue, Aug 7, 2018 at 1:41 PM, Emanuele Faranda <notifications@github.com

wrote:

Can try removing the --https-port option from /etc/ntopng/ntopng.conf and restart nedge with sudo systemctl restart ntopng?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-411014230, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndeg09WAA-HB02aNcTidbOOyRez5Hks5uOW7lgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

emanuele-f commented 6 years ago

Please post your full ntopng.conf if different from the original one and also the ntopng startup log.

tomoxwell commented 6 years ago

The configuration file is similar to the command line, with the

exception that an equal

sign '=' must be used between key and value. Example: -i=p1p2

or --interface=p1p2 For

options with no value (e.g. -v) the equal is also necessary.

Example: "-v=" must be used.

#

#

-G|--pid-path

Specifies the path where the PID (process ID) is saved. This

option is ignored when

ntopng is controlled with systemd (e.g., service ntopng start).

#

-G=/var/run/ntopng.pid

#

-e|--daemon

This parameter causes ntop to become a daemon, i.e. a task which

runs in the background

without connection to a specific terminal. To use ntop other than

as a casual monitoring

tool, you probably will want to use this option. This option is

ignored when ntopng is

controlled with systemd (e.g., service ntopng start)

#

-e=

#

-i|--interface

Specifies the NETFILTER queue used by ntopng. The format is

nf: (e.g., nf:0).

#

-i=nf:0

#

-w|--http-port

Sets the HTTP port of the embedded web server. To be able to use

ntopng internal captive

portal, a port different than port 80 must be specified.

#

-w=3000

-w=3000

-W|--https-port

Sets the HTTPs port of the embedded web server for the captive

portal.

#

-W=443

#

-m|--local-networks

ntopng determines the ip addresses and netmasks for each active

interface. Any traffic on

those networks is considered local. This parameter allows the

user to define additional

networks and subnetworks whose traffic is also considered local

in ntopng reports. All

other hosts are considered remote. If not specified the default is

set to 192.168.1.0/24.

#

Commas separate multiple network values. Both netmask and

CIDR notation may be used,

even mixed together, for instance "

131.114.21.0/24,10.0.0.0/255.0.0.0".

#

-m=10.10.123.0/24

-m=10.10.124.0/24

#

-n|--dns-mode

Sets the DNS address resolution mode: 0 - Decode DNS responses

and resolve only local

(-m) numeric IPs 1 - Decode DNS responses and resolve all

numeric IPs 2 - Decode DNS

responses and don't resolve numeric IPs 3 - Don't decode DNS

responses and don't resolve

#

-n=1

#

-S|--sticky-hosts

ntopng periodically purges idle hosts. With this option you can

modify this behaviour by

telling ntopng not to purge the hosts specified by -S. This

parameter requires an argu-

ment that can be "all" (Keep all hosts in memory), "local"

(Keep only local hosts),

"remote" (Keep only remote hosts), "none" (Flush hosts when idle).

#

-S=

#

-d|--data-dir

Specifies the data directory (it must be writable by the user that

is executing ntopng).

#

-d=/var/tmp/ntopng

#

-q|--disable-autologout

Disable web interface logout for inactivity.

#

-q=

the only change i made was to disable the https option as advised earlier.

On Tue, Aug 7, 2018 at 3:34 PM, Emanuele Faranda notifications@github.com wrote:

Please post your full ntopng.conf if different from the original one and also the ntopng startup log.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-411040336, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndTi8urO_Yf7byTlH8WegFuUXbYBaks5uOYlZgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

emanuele-f commented 6 years ago

So is it an empty config? Anyway, please remove it and reinstall the original from the nedge package. Until something works please avoid any modifications to the configuration files otherwise we'll just waste our time. Please also post the startup log, possibly on github enclosed in triple quotes for proper formatting.

tomoxwell commented 6 years ago

/var/log/ntopng# cat ntopng.log

07/Aug/2018 11:02:59 [Ntop.cpp:933] Setting local networks to 127.0.0.0/8

07/Aug/2018 11:02:59 [Redis.cpp:106] Successfully connected to redis 127.0.0.1:6379@0

07/Aug/2018 11:03:00 [Ntop.cpp:907] Parent process is exiting (this is normal)

07/Aug/2018 11:03:00 [PcapInterface.cpp:86] Reading packets from interface eno1...

07/Aug/2018 11:03:00 [Ntop.cpp:1152] Registered interface eno1 [id: 2]

07/Aug/2018 11:03:00 [PcapInterface.cpp:86] Reading packets from interface eno1.8...

07/Aug/2018 11:03:00 [Ntop.cpp:1152] Registered interface eno1.8 [id: 3]

07/Aug/2018 11:03:00 [PcapInterface.cpp:86] Reading packets from interface lo...

07/Aug/2018 11:03:00 [Ntop.cpp:1152] Registered interface lo [id: 4]

07/Aug/2018 11:03:00 [Ntop.cpp:1165] Registered interface view eno1 [id: 2]

07/Aug/2018 11:03:00 [Ntop.cpp:1165] Registered interface view eno1.8 [id: 3]

07/Aug/2018 11:03:00 [Ntop.cpp:1165] Registered interface view lo [id: 4]

07/Aug/2018 11:03:00 [Utils.cpp:299] User changed to nobody

07/Aug/2018 11:03:00 [main.cpp:240] PID stored in file /var/tmp/ntopng.pid

07/Aug/2018 11:03:00 [HTTPserver.cpp:456] HTTPS Disabled: missing SSL certificate /usr/share/ntopng/httpdocs/ssl/ntopng-cert.pem

07/Aug/2018 11:03:00 [HTTPserver.cpp:458] Please read https://github.com/ntop/ntopng/blob/dev/doc/README.SSL if you want to enable SSL.

07/Aug/2018 11:03:00 [HTTPserver.cpp:501] Web server dirs [/usr/share/ntopng/httpdocs][/usr/share/ntopng/scripts]

07/Aug/2018 11:03:00 [HTTPserver.cpp:504] HTTP server listening on port 3000

07/Aug/2018 11:03:00 [main.cpp:290] Working directory: /var/tmp/ntopng

07/Aug/2018 11:03:00 [main.cpp:292] Scripts/HTML pages directory: /usr/share/ntopng

07/Aug/2018 11:03:00 [Ntop.cpp:260] Welcome to ntopng x86_64 v.2.3.160415 - (C) 1998-15 ntop.org

07/Aug/2018 11:03:00 [PeriodicActivities.cpp:53] Started periodic activities loop...

07/Aug/2018 11:03:00 [Ntop.cpp:516] Adding 127.0.0.0/8 as IPv4 local network for lo

07/Aug/2018 11:03:00 [Ntop.cpp:516] Adding 10.0.8.0/24 as IPv4 local network for eno1

07/Aug/2018 11:03:00 [Ntop.cpp:516] Adding 10.0.8.0/24 as IPv4 local network for eno1.8

07/Aug/2018 11:03:00 [Ntop.cpp:546] Adding ::1/128 as IPv6 local network for lo

07/Aug/2018 11:03:00 [Ntop.cpp:546] Adding fe80::be30:5bff:feed:b874/64 as IPv6 local network for eno1

07/Aug/2018 11:03:00 [Ntop.cpp:546] Adding fe80::be30:5bff:feed:b874/64 as IPv6 local network for eno1.8

07/Aug/2018 11:03:00 [NetworkInterface.cpp:1426] Started packet polling on interface eno1 [id: 2]...

07/Aug/2018 11:03:00 [NetworkInterface.cpp:1426] Started packet polling on interface eno1.8 [id: 3]...

07/Aug/2018 11:03:00 [NetworkInterface.cpp:1426] Started packet polling on interface lo [id: 4]...

07/Aug/2018 11:03:43 [NetworkInterface.cpp:949] Invalid packet received [len: 4410][MTU: 1518].

07/Aug/2018 11:03:43 [NetworkInterface.cpp:950] WARNING: If you have TSO/GRO enabled, please disable it

07/Aug/2018 11:03:43 [NetworkInterface.cpp:952] WARNING: Use: sudo ethtool -K eno1 gro off gso off tso off

07/Aug/2018 12:38:07 [main.cpp:37] Shutting down...

07/Aug/2018 12:38:07 [PcapInterface.cpp:196] Terminated packet polling for lo

07/Aug/2018 12:38:07 [PcapInterface.cpp:196] Terminated packet polling for eno1

07/Aug/2018 12:38:07 [PcapInterface.cpp:196] Terminated packet polling for eno1.8

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv4] 11.84 MB/72.85 K Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv6] 504 B/6.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [ARP] 983.50 KB/16.79 K Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [MPLS] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [Other] 244.62 KB/3.52 K Packets

07/Aug/2018 12:38:09 [Ntop.cpp:1191] Interface eno1 [running: 0]

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv4] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv6] 480 B/6.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [ARP] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [MPLS] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [Other] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [Ntop.cpp:1191] Interface eno1.8 [running: 0]

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv4] 25.20 MB/165.99 K Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv6] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [ARP] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [MPLS] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [Other] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [Ntop.cpp:1191] Interface lo [running: 0]

07/Aug/2018 12:38:09 [main.cpp:48] Deleted PID /var/tmp/ntopng.pid [rc: 0]

07/Aug/2018 12:38:09 [NetworkInterface.cpp:412] Flushing host contacts for interface eno1

07/Aug/2018 12:38:09 [NetworkInterface.cpp:1451] Cleanup interface eno1

07/Aug/2018 12:38:09 [NetworkInterface.cpp:412] Flushing host contacts for interface eno1.8

07/Aug/2018 12:38:09 [NetworkInterface.cpp:1451] Cleanup interface eno1.8

07/Aug/2018 12:38:09 [NetworkInterface.cpp:412] Flushing host contacts for interface lo

07/Aug/2018 12:38:09 [NetworkInterface.cpp:1451] Cleanup interface lo

07/Aug/2018 12:38:09 [HTTPserver.cpp:516] HTTP server terminated

07/Aug/2018 12:38:09 [AddressResolution.cpp:54] Address resolution stats [7 resolved][27 failures]

root@sapphire:/var/log/ntopng#

On Tue, Aug 7, 2018 at 3:36 PM, Tom Ongaro tomo@maxwellsda.org wrote:

The configuration file is similar to the command line, with

the exception that an equal

sign '=' must be used between key and value. Example: -i=p1p2

or --interface=p1p2 For

options with no value (e.g. -v) the equal is also necessary.

Example: "-v=" must be used.

#

#

-G|--pid-path

Specifies the path where the PID (process ID) is saved. This

option is ignored when

ntopng is controlled with systemd (e.g., service ntopng start).

#

-G=/var/run/ntopng.pid

#

-e|--daemon

This parameter causes ntop to become a daemon, i.e. a task

which runs in the background

without connection to a specific terminal. To use ntop other than

as a casual monitoring

tool, you probably will want to use this option. This option is

ignored when ntopng is

controlled with systemd (e.g., service ntopng start)

#

-e=

#

-i|--interface

Specifies the NETFILTER queue used by ntopng. The format is

nf: (e.g., nf:0).

#

-i=nf:0

#

-w|--http-port

Sets the HTTP port of the embedded web server. To be able to use

ntopng internal captive

portal, a port different than port 80 must be specified.

#

-w=3000

-w=3000

-W|--https-port

Sets the HTTPs port of the embedded web server for the captive

portal.

#

-W=443

#

-m|--local-networks

ntopng determines the ip addresses and netmasks for each active

interface. Any traffic on

those networks is considered local. This parameter allows the

user to define additional

networks and subnetworks whose traffic is also considered local

in ntopng reports. All

other hosts are considered remote. If not specified the default

is set to 192.168.1.0/24.

#

Commas separate multiple network values. Both netmask and

CIDR notation may be used,

even mixed together, for instance "131.114.21.0/24,10.0.0.0/255.

0.0.0".

#

-m=10.10.123.0/24

-m=10.10.124.0/24

#

-n|--dns-mode

Sets the DNS address resolution mode: 0 - Decode DNS responses

and resolve only local

(-m) numeric IPs 1 - Decode DNS responses and resolve all

numeric IPs 2 - Decode DNS

responses and don't resolve numeric IPs 3 - Don't decode DNS

responses and don't resolve

#

-n=1

#

-S|--sticky-hosts

ntopng periodically purges idle hosts. With this option you can

modify this behaviour by

telling ntopng not to purge the hosts specified by -S. This

parameter requires an argu-

ment that can be "all" (Keep all hosts in memory), "local"

(Keep only local hosts),

"remote" (Keep only remote hosts), "none" (Flush hosts when idle).

#

-S=

#

-d|--data-dir

Specifies the data directory (it must be writable by the user

that is executing ntopng).

#

-d=/var/tmp/ntopng

#

-q|--disable-autologout

Disable web interface logout for inactivity.

#

-q=

the only change i made was to disable the https option as advised earlier.

On Tue, Aug 7, 2018 at 3:34 PM, Emanuele Faranda <notifications@github.com

wrote:

Please post your full ntopng.conf if different from the original one and also the ntopng startup log.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-411040336, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndTi8urO_Yf7byTlH8WegFuUXbYBaks5uOYlZgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

tomoxwell commented 6 years ago

systemctl status ntopng

ntopng.service - ntopng high-speed web-based traffic monitoring and analysis tool

Loaded: loaded (/etc/systemd/system/ntopng.service; enabled; vendor preset: enabled)

Active: failed (Result: exit-code) since Tue 2018-08-07 15:41:07 EAT; 1min 47s ago

Process: 12885 ExecStopPost=/bin/sh -c /bin/echo "$(/bin/date) ntopng StopPost" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 12880 ExecStopPost=/bin/rm -rf /run/ntopng.conf (code=exited, status=0/SUCCESS)

Process: 12677 ExecStartPost=/bin/sh -c /bin/echo "$(/bin/date) ntopng StartPost" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 12676 ExecStart=/usr/local/bin/ntopng /run/ntopng.conf (code=exited, status=255)

Process: 12671 ExecStartPre=/bin/sh -c /bin/sed "/^[ ]-e.$|^[ ]-G.|^[ ]--daemon.|^[ ]--pid./s/^/#/" /etc/ntopng/ntopng.conf > /run/ntopng.conf (code=exited,

Process: 12663 ExecStartPre=/bin/sh -c /bin/echo "$(/bin/date) ntopng StartPre" >> /var/log/ntop-systemd.log (code=exited, status=0/SUCCESS)

Process: 12660 ExecStartPre=/bin/sh -c [ -f /etc/ntopng/conf.tar.gz ] && rm /etc/ntopng/conf.tar.gz || true (code=exited, status=0/SUCCESS)

Process: 12652 ExecStartPre=/bin/sh -c DATA_DIR=$(cat /etc/ntopng/ntopng.conf | sed -n -e "s/^(-d|--data-dir)[ =]//p"); if [ ! $DATA_DIR ]; then DATA_DIR="/var/tmp"

Process: 12649 ExecStartPre=/bin/sh -c BIN_TAR=/bin/tar; if [ ! -f $BIN_TAR ]; then BIN_TAR=/usr/bin/tar; fi; [ -f /etc/ntopng/conf.tar.gz ] && $BIN_TAR -xzf /etc/ntop

Main PID: 12676 (code=exited, status=255)

Aug 07 15:41:07 sapphire ntopng[12676]: 07/Aug/2018 15:41:07 [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.20.1:3000: Success

Aug 07 15:41:07 sapphire ntopng[12676]: [HTTPserver.cpp:903] ERROR: [HTTP] set_ports_option: cannot bind to 192.168.20.1:3000 http://192.168.20.1:3000: Cannot assign requested address

Aug 07 15:41:07 sapphire ntopng[12676]: 07/Aug/2018 15:41:07 [HTTPserver.cpp:1066] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.20.1:3000

Aug 07 15:41:07 sapphire ntopng[12676]: [mongoose.c:4544] ERROR: set_ports_option: cannot bind to 192.168.20.1:3000 http://192.168.20.1:3000: Success

Aug 07 15:41:07 sapphire ntopng[12676]: 07/Aug/2018 15:41:07 [HTTPserver.cpp:1072] ERROR: Either port in use or another ntopng instance is running (using the same port)

Aug 07 15:41:07 sapphire ntopng[12676]: [HTTPserver.cpp:1066] ERROR: Unable to start HTTP server (IPv4) on ports 192.168.20.1:3000 http://192.168.20.1:3000

Aug 07 15:41:07 sapphire ntopng[12676]: [HTTPserver.cpp:1072] ERROR: Either port in use or another ntopng instance is running (using the same port)

Aug 07 15:41:07 sapphire systemd[1]: ntopng.service: Main process exited, code=exited, status=255/n/a

Aug 07 15:41:07 sapphire systemd[1]: ntopng.service: Unit entered failed state.

Aug 07 15:41:07 sapphire systemd[1]: ntopng.service: Failed with result 'exit-code'.

On Tue, Aug 7, 2018 at 3:42 PM, Tom Ongaro tomo@maxwellsda.org wrote:

/var/log/ntopng# cat ntopng.log

07/Aug/2018 11:02:59 [Ntop.cpp:933] Setting local networks to 127.0.0.0/8

07/Aug/2018 11:02:59 [Redis.cpp:106] Successfully connected to redis 127.0.0.1:6379@0

07/Aug/2018 11:03:00 [Ntop.cpp:907] Parent process is exiting (this is normal)

07/Aug/2018 11:03:00 [PcapInterface.cpp:86] Reading packets from interface eno1...

07/Aug/2018 11:03:00 [Ntop.cpp:1152] Registered interface eno1 [id: 2]

07/Aug/2018 11:03:00 [PcapInterface.cpp:86] Reading packets from interface eno1.8...

07/Aug/2018 11:03:00 [Ntop.cpp:1152] Registered interface eno1.8 [id: 3]

07/Aug/2018 11:03:00 [PcapInterface.cpp:86] Reading packets from interface lo...

07/Aug/2018 11:03:00 [Ntop.cpp:1152] Registered interface lo [id: 4]

07/Aug/2018 11:03:00 [Ntop.cpp:1165] Registered interface view eno1 [id: 2]

07/Aug/2018 11:03:00 [Ntop.cpp:1165] Registered interface view eno1.8 [id: 3]

07/Aug/2018 11:03:00 [Ntop.cpp:1165] Registered interface view lo [id: 4]

07/Aug/2018 11:03:00 [Utils.cpp:299] User changed to nobody

07/Aug/2018 11:03:00 [main.cpp:240] PID stored in file /var/tmp/ntopng.pid

07/Aug/2018 11:03:00 [HTTPserver.cpp:456] HTTPS Disabled: missing SSL certificate /usr/share/ntopng/httpdocs/ssl/ntopng-cert.pem

07/Aug/2018 11:03:00 [HTTPserver.cpp:458] Please read https://github.com/ntop/ntopng/blob/dev/doc/README.SSL if you want to enable SSL.

07/Aug/2018 11:03:00 [HTTPserver.cpp:501] Web server dirs [/usr/share/ntopng/httpdocs][/usr/share/ntopng/scripts]

07/Aug/2018 11:03:00 [HTTPserver.cpp:504] HTTP server listening on port 3000

07/Aug/2018 11:03:00 [main.cpp:290] Working directory: /var/tmp/ntopng

07/Aug/2018 11:03:00 [main.cpp:292] Scripts/HTML pages directory: /usr/share/ntopng

07/Aug/2018 11:03:00 [Ntop.cpp:260] Welcome to ntopng x86_64 v.2.3.160415

  • (C) 1998-15 ntop.org

07/Aug/2018 11:03:00 [PeriodicActivities.cpp:53] Started periodic activities loop...

07/Aug/2018 11:03:00 [Ntop.cpp:516] Adding 127.0.0.0/8 as IPv4 local network for lo

07/Aug/2018 11:03:00 [Ntop.cpp:516] Adding 10.0.8.0/24 as IPv4 local network for eno1

07/Aug/2018 11:03:00 [Ntop.cpp:516] Adding 10.0.8.0/24 as IPv4 local network for eno1.8

07/Aug/2018 11:03:00 [Ntop.cpp:546] Adding ::1/128 as IPv6 local network for lo

07/Aug/2018 11:03:00 [Ntop.cpp:546] Adding fe80::be30:5bff:feed:b874/64 as IPv6 local network for eno1

07/Aug/2018 11:03:00 [Ntop.cpp:546] Adding fe80::be30:5bff:feed:b874/64 as IPv6 local network for eno1.8

07/Aug/2018 11:03:00 [NetworkInterface.cpp:1426] Started packet polling on interface eno1 [id: 2]...

07/Aug/2018 11:03:00 [NetworkInterface.cpp:1426] Started packet polling on interface eno1.8 [id: 3]...

07/Aug/2018 11:03:00 [NetworkInterface.cpp:1426] Started packet polling on interface lo [id: 4]...

07/Aug/2018 11:03:43 [NetworkInterface.cpp:949] Invalid packet received [len: 4410][MTU: 1518].

07/Aug/2018 11:03:43 [NetworkInterface.cpp:950] WARNING: If you have TSO/GRO enabled, please disable it

07/Aug/2018 11:03:43 [NetworkInterface.cpp:952] WARNING: Use: sudo ethtool -K eno1 gro off gso off tso off

07/Aug/2018 12:38:07 [main.cpp:37] Shutting down...

07/Aug/2018 12:38:07 [PcapInterface.cpp:196] Terminated packet polling for lo

07/Aug/2018 12:38:07 [PcapInterface.cpp:196] Terminated packet polling for eno1

07/Aug/2018 12:38:07 [PcapInterface.cpp:196] Terminated packet polling for eno1.8

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv4] 11.84 MB/72.85 K Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv6] 504 B/6.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [ARP] 983.50 KB/16.79 K Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [MPLS] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [Other] 244.62 KB/3.52 K Packets

07/Aug/2018 12:38:09 [Ntop.cpp:1191] Interface eno1 [running: 0]

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv4] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv6] 480 B/6.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [ARP] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [MPLS] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [Other] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [Ntop.cpp:1191] Interface eno1.8 [running: 0]

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv4] 25.20 MB/165.99 K Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [IPv6] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [ARP] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [MPLS] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [ProtoStats.cpp:35] [Other] 0 B/0.00 Packets

07/Aug/2018 12:38:09 [Ntop.cpp:1191] Interface lo [running: 0]

07/Aug/2018 12:38:09 [main.cpp:48] Deleted PID /var/tmp/ntopng.pid [rc: 0]

07/Aug/2018 12:38:09 [NetworkInterface.cpp:412] Flushing host contacts for interface eno1

07/Aug/2018 12:38:09 [NetworkInterface.cpp:1451] Cleanup interface eno1

07/Aug/2018 12:38:09 [NetworkInterface.cpp:412] Flushing host contacts for interface eno1.8

07/Aug/2018 12:38:09 [NetworkInterface.cpp:1451] Cleanup interface eno1.8

07/Aug/2018 12:38:09 [NetworkInterface.cpp:412] Flushing host contacts for interface lo

07/Aug/2018 12:38:09 [NetworkInterface.cpp:1451] Cleanup interface lo

07/Aug/2018 12:38:09 [HTTPserver.cpp:516] HTTP server terminated

07/Aug/2018 12:38:09 [AddressResolution.cpp:54] Address resolution stats [7 resolved][27 failures]

root@sapphire:/var/log/ntopng#

On Tue, Aug 7, 2018 at 3:36 PM, Tom Ongaro tomo@maxwellsda.org wrote:

The configuration file is similar to the command line, with

the exception that an equal

sign '=' must be used between key and value. Example: -i=p1p2

or --interface=p1p2 For

options with no value (e.g. -v) the equal is also necessary.

Example: "-v=" must be used.

#

#

-G|--pid-path

Specifies the path where the PID (process ID) is saved. This

option is ignored when

ntopng is controlled with systemd (e.g., service ntopng start).

#

-G=/var/run/ntopng.pid

#

-e|--daemon

This parameter causes ntop to become a daemon, i.e. a task

which runs in the background

without connection to a specific terminal. To use ntop other

than as a casual monitoring

tool, you probably will want to use this option. This option is

ignored when ntopng is

controlled with systemd (e.g., service ntopng start)

#

-e=

#

-i|--interface

Specifies the NETFILTER queue used by ntopng. The format is

nf: (e.g., nf:0).

#

-i=nf:0

#

-w|--http-port

Sets the HTTP port of the embedded web server. To be able to use

ntopng internal captive

portal, a port different than port 80 must be specified.

#

-w=3000

-w=3000

-W|--https-port

Sets the HTTPs port of the embedded web server for the captive

portal.

#

-W=443

#

-m|--local-networks

ntopng determines the ip addresses and netmasks for each active

interface. Any traffic on

those networks is considered local. This parameter allows the

user to define additional

networks and subnetworks whose traffic is also considered local

in ntopng reports. All

other hosts are considered remote. If not specified the default

is set to 192.168.1.0/24.

#

Commas separate multiple network values. Both netmask and

CIDR notation may be used,

even mixed together, for instance "131.114.21.0/24,10.0.0.0/255.

0.0.0".

#

-m=10.10.123.0/24

-m=10.10.124.0/24

#

-n|--dns-mode

Sets the DNS address resolution mode: 0 - Decode DNS responses

and resolve only local

(-m) numeric IPs 1 - Decode DNS responses and resolve all

numeric IPs 2 - Decode DNS

responses and don't resolve numeric IPs 3 - Don't decode DNS

responses and don't resolve

#

-n=1

#

-S|--sticky-hosts

ntopng periodically purges idle hosts. With this option you can

modify this behaviour by

telling ntopng not to purge the hosts specified by -S. This

parameter requires an argu-

ment that can be "all" (Keep all hosts in memory), "local"

(Keep only local hosts),

"remote" (Keep only remote hosts), "none" (Flush hosts when

idle).

#

-S=

#

-d|--data-dir

Specifies the data directory (it must be writable by the user

that is executing ntopng).

#

-d=/var/tmp/ntopng

#

-q|--disable-autologout

Disable web interface logout for inactivity.

#

-q=

the only change i made was to disable the https option as advised earlier.

On Tue, Aug 7, 2018 at 3:34 PM, Emanuele Faranda < notifications@github.com> wrote:

Please post your full ntopng.conf if different from the original one and also the ntopng startup log.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-411040336, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndTi8urO_Yf7byTlH8WegFuUXbYBaks5uOYlZgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

emanuele-f commented 6 years ago

It seems like your are using ntopng. Have you installed the nedge package?

tomoxwell commented 6 years ago

I thought the original installs when i install the nedge packet. Is there another way of getting it besides installing nedge again? Kindly share that with

On 7 Aug 2018, at 15:43, Emanuele Faranda notifications@github.com wrote:

So is it an empty config? Anyway, please remove it and reinstall the original from the nedge package. Until something works please avoid any modifications to the configuration files otherwise we'll just waste our time. Please also post the startup log, possibly on github enclosed in triple quotes for proper formatting.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-411042628, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndYU7T4KaXsqMPsPJpaYM0L34hVfjks5uOYtdgaJpZM4VtB0i.

tomoxwell commented 6 years ago

I installed the nedge packet as follows

apt-get install nedge

On Tue, Aug 7, 2018 at 3:45 PM, Tom Ongaro tomo@maxwellsda.org wrote:

I thought the original installs when i install the nedge packet. Is there another way of getting it besides installing nedge again? Kindly share that with

On 7 Aug 2018, at 15:43, Emanuele Faranda notifications@github.com wrote:

So is it an empty config? Anyway, please remove it and reinstall the original from the nedge package. Until something works please avoid any modifications to the configuration files otherwise we'll just waste our time. Please also post the startup log, possibly on github enclosed in triple quotes for proper formatting.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-411042628, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndYU7T4KaXsqMPsPJpaYM0L34hVfjks5uOYtdgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

tomoxwell commented 6 years ago

These are the three commands I issued after a fresh ubuntu 16 install

wget http://apt.ntop.org/16.04/all/apt-ntop.deb

dpkg -i apt-ntop.deb

apt-get update

apt-get install nedge

On Tue, Aug 7, 2018 at 3:45 PM, Tom Ongaro tomo@maxwellsda.org wrote:

I installed the nedge packet as follows

apt-get install nedge

On Tue, Aug 7, 2018 at 3:45 PM, Tom Ongaro tomo@maxwellsda.org wrote:

I thought the original installs when i install the nedge packet. Is there another way of getting it besides installing nedge again? Kindly share that with

On 7 Aug 2018, at 15:43, Emanuele Faranda notifications@github.com wrote:

So is it an empty config? Anyway, please remove it and reinstall the original from the nedge package. Until something works please avoid any modifications to the configuration files otherwise we'll just waste our time. Please also post the startup log, possibly on github enclosed in triple quotes for proper formatting.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/ntop/ntopng/issues/1898#issuecomment-411042628, or mute the thread https://github.com/notifications/unsubscribe-auth/AQqndYU7T4KaXsqMPsPJpaYM0L34hVfjks5uOYtdgaJpZM4VtB0i .

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

--

TOM ONGARO SYSTEMS ADMIN MAA 254 729 604729

emanuele-f commented 6 years ago

Please get the original configuration from: https://raw.githubusercontent.com/ntop/ntopng/dev/packages/etc/ntopng/nedge.conf and copy it into /etc/ntopng/ntopng.conf

tomoxwell commented 6 years ago

Thanks let me do that asap

tomoxwell commented 6 years ago

I have reviewed the file and its exactly the same. The only difference is the https port which i have also enabled as it was before. Please let me know if there is any other thing that needs to be there that is not there. The one you told me to copy is as below:

#         The  configuration  file is similar to the command line, with the exception that an equal
#        sign '=' must be used between key and value. Example:  -i=p1p2  or  --interface=p1p2  For
#        options with no value (e.g. -v) the equal is also necessary. Example: "-v=" must be used.
#
#
#       -G|--pid-path
#        Specifies the path where the PID (process ID) is saved. This option is ignored when
#        ntopng is controlled with systemd (e.g., service ntopng start).
#
-G=/var/run/ntopng.pid
#
#       -e|--daemon
#        This  parameter  causes ntop to become a daemon, i.e. a task which runs in the background
#        without connection to a specific terminal. To use ntop other than as a casual  monitoring
#        tool, you probably will want to use this option. This option is ignored when ntopng is
#        controlled with systemd (e.g., service ntopng start)
#
# -e=
#
#       -i|--interface
#        Specifies the NETFILTER queue used by ntopng. The format is nf:<queue_id> (e.g., nf:0).
#
-i=nf:0
#
#       -w|--http-port
#        Sets the HTTP port of the embedded web server. To be able to use ntopng internal captive
#        portal, a port different than port 80 must be specified.
#
#-w=3000
-w=3000
#       -W|--https-port
#        Sets the HTTPs port of the embedded web server for the captive portal.
#
-W=443
#
#       -m|--local-networks
#        ntopng determines the ip addresses and netmasks for each active interface. Any traffic on
#        those  networks  is considered local. This parameter allows the user to define additional
#        networks and subnetworks whose traffic is also considered local in  ntopng  reports.  All
#        other hosts are considered remote. If not specified the default is set to 192.168.1.0/24.
#
#        Commas  separate  multiple  network  values.  Both netmask and CIDR notation may be used,
#        even mixed together, for instance "131.114.21.0/24,10.0.0.0/255.0.0.0".
#
# -m=10.10.123.0/24
# -m=10.10.124.0/24
#
#       -n|--dns-mode
#        Sets the DNS address resolution mode: 0 - Decode DNS responses  and  resolve  only  local
#        (-m)  numeric  IPs  1  -  Decode DNS responses and resolve all numeric IPs 2 - Decode DNS
#        responses and don't resolve numeric IPs 3 - Don't decode DNS responses and don't  resolve
#
# -n=1
#
#       -S|--sticky-hosts
#        ntopng  periodically purges idle hosts. With this option you can modify this behaviour by
#        telling ntopng not to purge the hosts specified by -S. This parameter requires  an  argu-
#        ment  that  can  be  "all"  (Keep  all hosts in memory), "local" (Keep only local hosts),
#        "remote" (Keep only remote hosts), "none" (Flush hosts when idle).
#
# -S=
#
#       -d|--data-dir
#        Specifies the data directory (it must be writable by the user that is executing ntopng).
#
# -d=/var/tmp/ntopng
#
#       -q|--disable-autologout
#        Disable web interface logout for inactivity.
#
# -q=
emanuele-f commented 6 years ago

Please do not modify the configuration file at all. Keep the default installed one and let me know if this setup works.