OpenBSD - NTopNG

NTOPNG with Self Signed Cert

ntopng is a network traffic probe that provides 360° Network visibility, with its ability to gather traffic information from traffic mirrors, Netflow exporters, SNMP devices, Firewall logs, Intrusion Detection systems.

package

as root

pkg_add ntopng

Cert

To use HTTPS on the built-in web server, create /etc/ssl/ntopng-cert.pem containing both the private key and certificate in the same file and make this readable by the _ntopng user. Use the -W flag to listen on HTTPS.

cd /tmp
openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365 -nodes

Country Name (2 letter code) []:CH
State or Province Name (full name) []:
Locality Name (eg, city) []:ZURICH
Organization Name (eg, company) []:
Organizational Unit Name (eg, section) []:
Common Name (eg, fully qualified host name) []:
Email Address []:

cat /tmp/key.pem /tmp/cert.pem > /etc/ssl/ntopng-cert.pem
chown _ntopng /etc/ssl/ntopng-cert.pem

update /etc/rc.conf.local

vio0: interface to monitor. addjust accordingly

ntopng_flags=-i vio0 -W 443
pkg_scripts=rrdcached redis ntopng

Enable & Start Services

rcctl enable redis rrdcached ntopng
rcctl restart redis rrdcached ntopng

Access Website

https://ip-of-your-host:8443

login with admin/admin, and set a secure password …

sha256: f272186a57bc5c71e30f281d536bba1b8afe10b61172022155ac28edb46b8063