[Ntop] Ntop on debian on sparc - not much happening

Fri, 23 Dec 2005 11:25:00 -0800

I have the debian unstable/testing ntop 3.2 package installed on a ultrasparc 60 running 3.1 debian. Everything installed cleanly, I set the ntop admin password, and issued a /etc/init.d/ntop start. Ntop will start as a daemon, but nothing seems to happen - nothing created in the rrd directory, and the built in web server serves nothing.

Other than:

prefsCache.db
ntop.pid
fingerprint.db
addressQueue.db

No files seem to get touched - those 4 seem to get updated when ntop is started (but never again), but nothing else happens. Telnetting to port 3000, or using a web browser will result in a tcp handshake coming up, but no actual http traffic is passed. Ntop is properly using the eth1 interface, as its logs say it is using it and the kernel also logs it going into promiscuous mode. Eth1 is up, with no ip address assigned as it is dedicated to ntop.

The only thing that seems off in the log is a just a warning: GDVERCHK: Unable to load gd, message is 'libgd.so: cannot open shared object file: No such file or directory'

 /usr/sbin/ntop -d -L -u ntop -P /var/lib/ntop --skip-version-check -a /var/log/ntop/access.log -i eth1 -p /etc/ntop/protocol.list -O /var/log/ntop

Is what is being run when starting via /etc/init.d/ntop start.

When I /etc/init.d/ntop stop , it tells me that ntop not stopped, need to kill manually, but there are no ntop processes runing. The ntop log entries from that stop appear to indicate a graceful shutdown.

What should the file permissions look like? It seems it is a mix of files owned by root and ntop. If they were a problem, would ntop log an error?

They looked like this:

 ls -l -t /var/lib/ntop
total 1316
-rw-r--r--  1 root root   25198 2005-12-21 15:51 prefsCache.db
-rw-------  1 ntop ntop       5 2005-12-21 15:51 ntop.pid
-rw-r--r--  1 root root      24 2005-12-21 15:51 6.eth1.pcap
-rw-r--r--  1 root root  246025 2005-12-21 15:51 fingerprint.db
-rw-r--r--  1 root root   24576 2005-12-21 15:51 addressQueue.db
drwx------  5 root root    4096 2005-12-20 11:45 rrd
-rw-rw-r--  1 root root   24576 2005-12-19 15:50 LsWatch.db
-rw-r--r--  1 root root   24834 2005-12-19 15:50 ntop_pw.db
-rw-r--r--  1 root root 1090128 2005-12-19 15:49 macPrefix.db
-rw-r--r--  1 root root   24576 2005-12-19 15:49 dnsCache.db
-rw-r--r--  1 ntop root      30 2005-12-06 17:10 init.cfg

/var/lib/ntop itself is dwrx-r-x--- ntop root ...

I tried chmod'ing them to ntop, and that did not change anything.

Any ideas?

Thanks in advance,

Matt
 
_______________________________________________
Ntop mailing list
[email protected]
http://listgateway.unipi.it/mailman/listinfo/ntop

Reply via email to