So, all these commands can be run at „Diagnostics“ => „Command Prompt“ in a „copy-paste“ style:<\/p>\n\n\n\n
- mkdir \/var\/lib\/ntopng<\/li>
- touch \/var\/lib\/ntopng\/protos.txt<\/li>
- chown -R ntopng:ntopng \/var\/lib\/ntopng<\/li><\/ul>\n\n\n\n
The following additional parameter has to be added with „Diagnostics“ => „Edit File“.<\/p>\n\n\n\n
- Add ‚-p \/var\/lib\/ntopng\/protos.txt‘ to the parameter list in \/usr\/local\/etc\/rc.d\/ntopng.sh<\/li><\/ul>\n\n\n\n
My modified „ntopng.sh“ looks like this:<\/p>\n\n\n\n
![\"\"](\"https:\/\/www.boettrich.info\/blog\/wp-content\/uploads\/2022\/05\/image-1024x741.png\")
<\/a>Added parameter<\/figcaption><\/figure>\n\n\n\n Afterwards you have to restart the ntopng service – do it with „Status“ => „Services“:<\/p>\n\n\n\n
![\"\"](\"https:\/\/www.boettrich.info\/blog\/wp-content\/uploads\/2022\/05\/image-1-1024x48.png\")
<\/a><\/figure>\n\n\n\n(!) <\/strong>Bear in mind, thart the additional parameter in „ntopng.sh“ gets deleted when you modifiy the ntopng settings under „Diagnostics“ => „ntopng Settings“. (!)<\/strong><\/p>\n\n\n\n
A good start writing new custom protocol definitions is nDPI\/protos.txt at dev \u00b7 ntop\/nDPI \u00b7 GitHub<\/a><\/p>\n\n\n\n
One can edit the „protos.txt“ file via „File Editor“ or one can add new protocols directly via the ntopng GUI.<\/p>\n\n\n\n
<\/p>\n","protected":false},"excerpt":{"rendered":"
This week i set up a pfSense box with a ntopng instance enabled to get some insights on some traffic captured via a SPAN port. As expected – works great! pfsense and the installable ntopng package do a great job :-) As is saw a significant amount of traffic marked as „UNKNOWN“ i asked myself… Weiterlesen »pfSense – ntopNG – Custom application<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","footnotes":""},"categories":[10,6],"tags":[],"class_list":["post-1486","post","type-post","status-publish","format-standard","hentry","category-netzwerk","category-technik"],"_links":{"self":[{"href":"https:\/\/www.boettrich.info\/blog\/wp-json\/wp\/v2\/posts\/1486","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.boettrich.info\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.boettrich.info\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.boettrich.info\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.boettrich.info\/blog\/wp-json\/wp\/v2\/comments?post=1486"}],"version-history":[{"count":7,"href":"https:\/\/www.boettrich.info\/blog\/wp-json\/wp\/v2\/posts\/1486\/revisions"}],"predecessor-version":[{"id":1496,"href":"https:\/\/www.boettrich.info\/blog\/wp-json\/wp\/v2\/posts\/1486\/revisions\/1496"}],"wp:attachment":[{"href":"https:\/\/www.boettrich.info\/blog\/wp-json\/wp\/v2\/media?parent=1486"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.boettrich.info\/blog\/wp-json\/wp\/v2\/categories?post=1486"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.boettrich.info\/blog\/wp-json\/wp\/v2\/tags?post=1486"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
- Add ‚-p \/var\/lib\/ntopng\/protos.txt‘ to the parameter list in \/usr\/local\/etc\/rc.d\/ntopng.sh<\/li><\/ul>\n\n\n\n