On Thu, 7 Aug 2003 08:29:20 -0500, "Burton M. Strauss III" <[EMAIL PROTECTED]> top-posted in message <[EMAIL PROTECTED]>: > -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of > Arnt Karlsen Sent: Wednesday, August 06, 2003 8:18 PM > To: [EMAIL PROTECTED] > Subject: Re: [Ntop] ntop port > > > > On Wed, 6 Aug 2003 19:27:33 -0500, "Burton M. Strauss III" > > <[EMAIL PROTECTED]> top-posted in message > > <[EMAIL PROTECTED]>: > > > -----Original Message----- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of > > > Ramiro Pulgar Sent: Wednesday, August 06, 2003 5:00 PM > > > To: [EMAIL PROTECTED] > > > Subject: [Ntop] ntop port > > > > > > > Hi! > > > > I'm trying to use ntop in a firewall but I can't get access to > > > > that interface. I configured the firewall to accept TCP packets > > > > over port 3000, but I think that ntop uses UDP packets, Is that > > > > true? Or, what is the concept to access to ntop installed in a > > > > firewall. > > > > Thanks > > > > > > http://xxxxxx:3000/ is the default, that's standard http which is > > > a tcp protocol on port 3000. > > > > > > Now to RECEIVE data, ntop needs to put the interface into > > > promiscuous mode and receive all the packets, that's why putting > > > ntop on a firewall is a BAD idea. > > > > ...however, it _is_ possible to hang an ip-less bridge outside > > the firewall and run a 3'rd wire inside and view ntop on that. > > > > ..tested a year ago on a Duron 1.2GHz with 128MB ram, that > > also did bandwidth throttling for my isp, only problem was > > ntop stability. ;-) > > Sure ... a 3 NIC bridge configuration works great. > > IIRC you want to specify the -i br0 or whatever as the interface, vs. > trying to combine packets from both the physical interfaces.
..does /dev/br0 work now in ntop? I seem to remember winding up with listening to either of the 2 bridge nics thru the 3'rd _non_-bridge nic, which _had_ an ip. ;-) ..to view traffic coming the same way as the firewall sees it, simply watch the bridge's external nic. -- ..med vennlig hilsen = with Kind Regards from Arnt... ;-) ...with a number of polar bear hunters in his ancestry... Scenarios always come in sets of three: best case, worst case, and just in case. _______________________________________________ Ntop mailing list [EMAIL PROTECTED] http://listgateway.unipi.it/mailman/listinfo/ntop
