[2024-feb-29] Sad news: Eric Layton aka Nocturnal Slacker aka vtel57 passed away on Feb 26th, shortly after hospitalization. He was one of our Wiki's most prominent admins. He will be missed.
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revision | |||
howtos:software:install_nfsen_on_slackware [2012/12/22 03:34 (UTC)] – [Sources] added needs_attention tag mfillpot | howtos:software:install_nfsen_on_slackware [2019/02/21 11:42 (UTC)] (current) – removed markand | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | <!-- Add your text below. We strongly advise to start with a Headline (see button bar above). --> | ||
- | ====== Install nfdump/ | ||
- | ======Concepts you should know:====== | ||
- | A device is setup to constantly send out netflow information, | ||
- | |||
- | A receiver listens for the netflow information ' | ||
- | |||
- | ======How to install====== | ||
- | |||
- | **A) Install/ | ||
- | 1) enable php | ||
- | |||
- | |||
- | **B) Configure the Cisco router to send netflow** | ||
- | |||
- | 1) Login to the Cisco router: | ||
- | |||
- | # telnet <YOUR ROUTER IP> | ||
- | | ||
- | |||
- | |||
- | 2) Configure the desired interface: | ||
- | |||
- | | ||
- | | ||
- | | ||
- | | ||
- | |||
- | |||
- | 3) Repeat for all interfaces you want. | ||
- | |||
- | | ||
- | | ||
- | | ||
- | | ||
- | |||
- | 4) Set the flow destination and break long flows into 5 minute segments: | ||
- | |||
- | | ||
- | | ||
- | | ||
- | |||
- | |||
- | 5) Make the changes permanent: | ||
- | |||
- | | ||
- | | ||
- | | ||
- | |||
- | |||
- | 6) Verify that it works: | ||
- | |||
- | | ||
- | | ||
- | |||
- | |||
- | |||
- | **C) Install NFDUMP** | ||
- | |||
- | 1) Install nfdump. | ||
- | |||
- | At the time of this writing, there is a nfdump SBo pending approval. It has nfprofile enabled. | ||
- | |||
- | |||
- | **D) Install NFSEN** | ||
- | |||
- | 1) Install RRDTool via SBo | ||
- | |||
- | 2) Install MailTools (Perl) via SBo | ||
- | |||
- | 3) Install Socket6 via CPAN | ||
- | |||
- | perl -MCPAN -e ' | ||
- | |||
- | 4) tar -svf nfsen-1.3.6p1.tar.gz | ||
- | |||
- | 5) cd nfsen-1.3.6p1 | ||
- | |||
- | 6) Add nfsen dirs | ||
- | |||
- | mkdir /data | ||
- | mkdir /data/nfsen | ||
- | |||
- | 7) cp ./ | ||
- | |||
- | |||
- | 8) Edit / | ||
- | |||
- | FROM: $HTMLDIR | ||
- | | ||
- | |||
- | FROM: $USER = " | ||
- | TO: $USER = " | ||
- | |||
- | FROM: $WWWUSER | ||
- | TO: $WWWUSER | ||
- | |||
- | FROM: $WWWGROUP = " | ||
- | TO: $WWWGROUP = " | ||
- | |||
- | FROM: $PREFIX | ||
- | TO: $PREFIX = '/ | ||
- | |||
- | FROM: ' | ||
- | and | ||
- | FROM: ' | ||
- | TO: ' | ||
- | | ||
- | TO: ' | ||
- | |||
- | If you use the 'port only' version, each device will have to come in on it's own port. | ||
- | If you use the ' | ||
- | |||
- | You can send all the flows in on one port and use filters to separate them. | ||
- | |||
- | 7) cd / | ||
- | |||
- | |||
- | |||
- | **If installed correctly, you should be able to open your web browser and see stuff** | ||
- | |||
- | | ||
- | |||
- | |||
- | |||
- | |||
- | ====== Sources ====== | ||
- | <!-- If you are copying information from another source, then specify that source --> | ||
- | <!-- * Original source: [[http:// | ||
- | <!-- Authors are allowed to give credit to themselves! --> | ||
- | <!-- * Originally written by [[wiki: | ||
- | <!-- * Contributions by [[wiki: | ||
- | |||
- | <!-- Please do not modify anything below, except adding new tags.--> | ||
- | <!-- You must remove the tag-word " | ||
- | {{tag> |