LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 08-25-2005, 02:55 PM   #1
doublez
LQ Newbie
 
Registered: Nov 2004
Posts: 8

Rep: Reputation: 0
looking to run ntop once daily reading from pcap file


i have a gateway bridge running snort for ips, tethereal to dump all traffic to a pcap file which gets gz'd and stored hourly and mrtg to graph traffic pulling from snmp once a minute. what im looking to do is run ntop once daily to produce the detailed graphs in html pulling the data for the graphs from the pcap dump. i don't want to run ntop constant as a daemon because of performance issues. ntop will be run on a seperate machine, where the gz'd files are, after the previous 24 hrs worth of captures have been unzipped and merged into one file. i then want to run ntop as described, once daily, and take the graphs produced and post them on another web server. im going to take the graphs produced and embed them in html on another web server... i'll get this done one way or the other, hopefully with a simple copy, if not a cropped screen capture... something, that should be relatively simple. so, in a nutshell, i need to run ntop once a day reading from 24hrs worth of pcap in a file.

thanks in advance for any suggestions...

im open to any other suggestions on how to accomplish this. i need ntop like graphs, all nice and pretty like ntop does it, but don't care how i get it done. it just needs to read that pcap file and give me some ntop like graphs which i can embed in some html. so if some one has an easier way to do this, or has already done something like this, maybe a script already written (would be beautiful), i'd love to hear it...
 
Old 08-25-2005, 05:16 PM   #2
Ike M.
Member
 
Registered: Aug 2005
Posts: 60

Rep: Reputation: 15
distribution?

I cannot tell by your message what distribution you are using, and as I did not seem to receive ntop as a part of mine, I had to do a little research. It sounds like you kind of already know what you´re doing with this- do you know about the Cron daemon? This allows you to execute any given command at any specific time-- if you already know what you are doing with this, this may be exactly what you are looking for. There is also a command that I have (with my Mandrake 10.1) that does this only by days instead of hours... Anacron.

I´m sorry if this isn´t exactly what you were looking for... I have little experience with the specific utilities that you are using. Perhaps Cron/Anacron in conjunction with the pipe [|] (shifted backslash on my keyboard) could pretty easily yield desireable results for you (it seems like you already have pretty much what you want, just that you want it to be automated). If you are not already aware of this, the pipe command | is a way of directing the output of one command directly into the input of another. LINUX/UNIX users are notorious for using this in very resourceful ways to create powerful and effective utilities using only a few basic command. As it sounds like you are not wanting to waste any resources, this may be the way to go

In other words, use the Cron/Anacron daemon to run your [ntop] at specific interval ONLY instead of having it on always eating resources. A Google search of proper Cron/Anacron syntax may be helpful
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
ntop once daily html summary from pcap file doublez Linux - Networking 0 08-25-2005 01:28 PM
awk: fatal:cannot open file for reading (no such file or Directory) in Linux sangati vishwanath Linux - Software 4 07-06-2005 12:59 AM
How to compile a C program in Glade which is included the <pcap.h> header file. swaviswa Programming 0 03-21-2004 07:47 AM
Daily Cron jobs with a PHP file Gargomel7 Programming 7 09-13-2003 07:21 PM
how do i schedule events to run daily. ThaddNZ2003 Linux - General 2 03-10-2003 10:59 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 01:15 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration