For access security you can use various firewalls on your server and/or ACL on your border router. Best practice hardening measures would also be good. Also, you can enable ssl and set passwords for nTop html pages.
Not sure how HP does VLAN mirroring so can't help much there. With (most) Cisco you'd need two NIC's in your nTop box - (1) for the monitor NIC connected to the monitor port, and (1) "access" NIC connected to whatever VLAN access port you want - it's the one you'll actually manage the box with. HTH Gary ________________________________ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Hall, John Sent: Monday, October 29, 2007 9:03 AM To: [email protected] Subject: [Ntop] Newb questions, secure access to ntop,HP switch port monitoring Greetings - I'm new to ntop but it looks like it will meet my needs. Two questions at the moment: 1) From my experience on a quick XP and a quick Ubuntu install, ntop is accessible from http://ip.address:3000. I'll need my next box outside our firewall on a public IP. How can I lock down the box so it's only accessible by me, and not out there on the Net to be sniffed and accessed? (This next box could be Ubuntu or XP per your suggestions.) 2) I want monitor one VLAN(/subnet) on our network. All of our switches are HPs. I suspect I should set the port into which the ntop box is plugged to be a "monitoring port" for the "point of presence" port of the VLAN I want to monitor. Is this correct? As I mentioned, I'm new to ntop. I'm only slightly less new to a lot of this networking stuff. Thanks for your help! - JD =========================================================================== "This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system."
_______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
