[Ntop-dev] NTOP Seg Fault RHEL4_x64 (configuration)

[Chris Leonardos]

My apologies. I neglected to attach this in my previous post.

*(C) 1998-2008 - Luca Deri * About Summary All Protocols IP Utils Plugins Admin What is ntop? Credits Make a Donation ntop World Online Documentation Show Configuration Report a Problem ntop-based Solutions nMon.net Products Man Page Help FAQ Risk Flags Traffic Hosts Network Load Network Flows Traffic Throughput Activity Summary Traffic Directions Local Traffic Multicast Internet Domain Networks ASs Host Clusters Distribution Local to Local Local to Remote Remote to Local Remote to Remote Ports Used Active TCP/UDP Sessions Host Fingerprint Host Characterization Network Traffic Map Local Matrix Data Dump View Log Host Last Seen ICMP Watch NetFlow PDA Remote Round-Robin Databases sFlow All Deactivate View Describe Activate Describe Activate View/Configure Describe Statistics Activate Describe Activate Describe Deactivate Configure Describe Statistics Arbitrary Graphs Activate View/Configure Describe Configure Shutdown Startup Options Preferences Packet Filter Reset Stats Web Users Protect URLs ntop Configuration Basic Information ntop Version 3.3.5 Configured on Jan 24 2008 13:31:34 Built on Jan 24 2008 13:32:32 OS x86_64-redhat-linux-gnu [32 bit] libpcap Version libpcap version 0.8.3 RRD Version 1.2023 Running from ntop Libraries in /usr/local/lib Process Id 15859 Run State Run Command Line Started as.... ntop -u ntop Resolved to.... ntop -u ntop Preferences Used NOTE: / (effective) means that this is the value after ntop has processed the parameter.(default) means this is the default value, usually (but not always) set by a #define in globals-defines.h./ -a | --access-log-file (default) (nil) -b | --disable-decoders (default) No -c | --sticky-hosts (default) No -d | --daemon No -e | --max-table-rows (default) 128 -f | --traffic-dump-file (default) (nil) -g | --track-local-hosts (default) Track all hosts -i | --interface (effective) eth3, et -j | --create-other-packets (default) Disabled -l | --pcap-log (default) (nil) -m | --local-subnets (effective) (default) (nil) -n | --numeric-ip-addresses (default) No -o | --no-mac (default) Trust MAC Addresses -p | --protocols (default) internal list -q | --create-suspicious-packets (default) Disabled -r | --refresh-time (default) 120 -s | --no-promiscuous (default) No -t | --trace-level 5 -u | --user ntop (uid=502, gid=502) -w | --http-server (default) Active, all interfaces, port 3000 -z | --disable-sessions (default) No -B | --filter-_expression_ (default) none -D | --domain none -F | --flow-spec (default) none -K | --enable-debug (default) No -L | --use-syslog daemon -M | --no-interface-merge (effective) (default) (Merging Interfaces) Yes -N | --wwn-map (default) (nil) -O | --pcap-file-path (default) /usr/local/var/ntop -P | --db-file-path (default) /usr/local/var/ntop -Q | --spool-file-path (default) /usr/local/var/ntop -U | --mapper (default) http://www.ntop.org/cgi-bin/mapper.pl -W | --https-server Uninitialized -X 32768 --disable-schedYield Yes --disable-instantsessionpurge (default) No --disable-mutexextrainfo (default) No --disable-stopcap Yes --fc-only (default) No --instance (default) (nil) --no-fc Yes --no-invalid-lun (default) No --p3p-cp (default) none --p3p-uri (default) none --skip-version-check Yes --ssl-watchdog (default) No --w3c Yes NOTE: /The --w3c flag makes the generated html MORE compatible with the w3c recommendations, but it in no way addresses all of the compatibility and markup issues. We would like to make *ntop* more compatible, but some basic issues of looking decent on real-world browsers mean it will never be 100%. If you find any issues, please report them to ntop-dev . / Run time/Internal Web server URL http://any:3000 SSL Web server (https://) Not Active GDBM version This is GDBM version 1.8.0, as of May 19, 1999. OpenSSL Version OpenSSL 0.9.7a Feb 19 2003 zlib version 1.2.1.2 Protocol Decoders Enabled Fragment Handling Enabled Tracking only local hosts No # IP Protocols Being Monitored 20 # Protocol slots 980 # IP Ports Being Monitored 177 # IP Ports slots 354 WebServer Request Queue 10 Devices (Network Interfaces) 2 Domain name (short) (nil) IP to country flag table (entries) 52395 Total Hash Collisions (Vendor/Special) (lookup) 0 Database (MySQL) Support Enabled No Networks eth3 Local Network 0.0.0.0/32 eth4 Local Network 0.0.0.0/32 ntop Web Server Item http:// https:// # Handled Requests 659 - # Successful requests (200) 658 - # Bad (We don't want to talk with you) requests 0 - # Invalid requests - 403 FORBIDDEN 0 - # Invalid requests - 404 NOT FOUND 0 - NOTE: // * /Counts may not total because of in-process requests./ * /Each request to the ntop web server - page, chart, etc. is counted separately/ // # SSI Requests 0 # Bad SSI Requests 0 # Handled SSI Requests 0 # Handled SIGPIPE Errors 0 Host Memory Cache Limit #define MAX_HOSTS_CACHE_LEN 512 Current Size 0 Maximum Size 0 # Entries Reused 0 Packets Received 2,453,240 Processed Immediately 2,453,180 (100.0 %) Queued 0 (0.0 %) Current Queue (eth3) 0 Maximum Queue (eth3) 0 (Limit 2048) Current Queue (eth4) 0 Maximum Queue (eth4) 0 (Limit 2048) Packet Processing Queue (pre-process) Processing Minimum 0.000007 0.000011 Average 0.000020 0.000018 Maximum 0.000295 0.000764 Standard Deviation 0.000019 0.000024 Maximum ever 0.102790 0.044752 Throughput (pps) min/avg/max 944.3 / 26229.5 / 55555.6 NOTE: /'Queue' time is the elapsed time between the packet arrival (libpcap) and the gettimeofday() value as the packet starts processPacket(). For a queued packet, this includes the time in queue. 'Processing' time is the elapsed time between starting and finishing processPacket(). Errors and/or unrecognized packets may cause processing to be abandoned and those packets are not counted in the 'processing' averages. This means that the 1024 packets for the 'queue' and 'processing' calculations are not necessarily the same physical packets, and may lead to over estimation of the per-packet 'processing' time. Small averages are good, especially if the standard deviation is small (standard deviation is a measurement of the variability of the actual values around the average). The computations are based only on the most recent 1024 packets processed. "Maximum ever" ignores the first 100 packets for each device - this lets *ntop* get over startup agony. What does this mean? Not much. Still, the 'Throughput' numbers give a very rough indication of the packet per second rate this instance of ntop can handle./ Host/Session counts - global Purged Hosts 38 Terminated Sessions 0 Host/Session counts - Device 0 (eth3) Hash Bucket Size 2.5 KBytes Actual Host Hash Size 32768 Stored hosts 524 Host Bucket List Length [min 1][max 2][avg 1.0] Max host lookup 1 Session Bucket Size 432 Session Actual Hash Size 65535 Sessions 0 Max Num. Sessions 0 Session Bucket List Length [min 4294967295][max 0][avg 1.0] Host/Session counts - Device 1 (eth4) Hash Bucket Size 2.5 KBytes Actual Host Hash Size 32768 Stored hosts 1 Host Bucket List Length [min 1][max 1][avg 1.0] Max host lookup 0 Session Bucket Size 432 Session Actual Hash Size 65535 Sessions 0 Max Num. Sessions 0 Session Bucket List Length [min 4294967295][max 0][avg 1.0] ----- Address Resolution ----- DNS Sniffing (other hosts requests) DNS Packets sniffed 4815 DNS Packets processed 1641 Stored in cache (includes aliases) 2895 Queued - dequeueAddress() Total Queued 52 Not queued (duplicate) 0 Maximum Queued 2 Current Queue 0 DNS Lookup Calls DNS resolution attempts 52 ....Success: Resolved 19 ....Failed 33 DNS lookups stored in cache 52 Host addresses kept numeric 33 NOTE: /'DNS lookups stored in cache' includes HOST_NOT_FOUND replies. Thus it may be larger than the number of 'Success: Resolved' queries. / Thread counts Active 10 Children (active) 34 Directory (search) order Data Files . /usr/local/share/ntop /usr/local/share/ntop Config Files . /usr/local/etc/ntop /usr/local/etc/ntop /etc Plugins ./plugins /usr/local/lib/ntop/plugins /usr/local/lib/ntop/plugins NOTE: /REMEMBER that the . (current working directory) value will be different when you run ntop from the command line vs. a cron job or startup script!/ Compile Time: ./configure ./configure parameters Built on (Host) x86_64-redhat-linux-gnu Built for(Target) x86_64-redhat-linux-gnu preprocessor (CPPFLAGS) gcc -E -DLINUX -I/usr/local/include -I/opt/local/include compiler (CFLAGS) gcc -g -O2 -I/usr/local/include -I/opt/local/include -Wshadow -Wpointer-arith -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -fPIC -DPIC -DHAVE_CONFIG_H include path (nil) system libraries -L/usr/local/lib -L/opt/local/lib -lpthread -lm -lcrypt -lc -lssl -lcrypto -lgdbm -lz install path /usr/local GNU C (gcc) version 3.4.6 20060404 (Red Hat 3.4.6-8) (3.4.6) uname data sysname(Linux) release(2.6.9-55.ELsmp) version(#1 SMP Fri Apr 20 16:36:54 EDT 2007) machine(x86_64) Internationalization (i18n) i18n enabled No Mutex Name State Attempt Lock UnLock Max Lock # Locks/Releases packetProcessMutex (eth3) unlocked Thu 24 Jan 2008 02:19:39 PM EST pbuf:2478 p:15859 t:1157658976 Thu 24 Jan 2008 02:19:39 PM EST pbuf:2504 p:15859 t:1157658976 0.044754 seconds pbuf:2478 1096051 / 1096051 packetProcessMutex (eth4) unlocked Thu 24 Jan 2008 02:19:39 PM EST pbuf:2478 p:15859 t:1168148832 Thu 24 Jan 2008 02:19:39 PM EST pbuf:2504 p:15859 t:1168148832 0.018675 seconds pbuf:2478 1357272 / 1357272 purgeMutex locked Thu 24 Jan 2008 02:19:39 PM EST http:3791 p:15859 t:1136679264 Thu 24 Jan 2008 02:17:48 PM EST hash:685 p:15859 t:1094719840 0.458381 seconds http:3791 677 / 676 [ Click here for a more extensive, text version of this page, suitable for inclusion into a bug report ] ------------------------------------------------------------------------ * Report created on Thu Jan 24 14:19:39 2008 [ntop uptime: 16:51] Generated by ntop v.3.3.5 [x86_64-redhat-linux-gnu] © 1998-2008 by Luca Deri , built: Jan 24 2008 13:32:32. Listening on [eth3,eth4] for all packets (i.e. without a filtering _expression_) Web reports include all interfaces (merged)*

_______________________________________________
Ntop-dev mailing list
Ntop-dev@unipi.it
http://listgateway.unipi.it/mailman/listinfo/ntop-dev