Chris, > > I guess I am wondering about possible breakage of the firewalls safety. > > I can appreciate that, just do not allow access to port 3000 from outside. > OTOH opening port 3000 and showing the staff ntop in action and telling them > that there is now an externally visible real time monitor of their entire > Internet usage is a _*great*_ deterrent to misbehavior. I had this running > for some months and as far as I know nothing untoward happened. > > btw, I did this on a school's machine and one of the students turned so pale I > thought he was going to faint. :-)
Did you install NTop on an IPCop box as you are suggesting Shane should do, or did you install it somewhere else and let the world see it? Unless someone has already packaged NTop for IPCop, I think it would be a very time consuming task to get it on there. As far as I know IPCop's packaging system doesn't support RPM or deb packages. It also doesn't have a compiler built in. NTop has a lot of dependencies. I know because I once installed it from CVS. So, unless someone has already packaged NTop for IPCop, I wouldn't attempt it. Maybe an easier way to get what Shane wants is to find something that can parse the squid logs and gives him the reports he needs. Once again, it probably shouldn't be installed on the firewall, just copy the logs to a workstation and generate the reports from there. I haven't done this before, so I don't even know if there is anything suitable (and I don't feel like googling for it), but it is an idea that Shane can research himself if he wants. -- Later David Kirk ** Beware the dreaded GMail reply-to header if replying to this message **
