That version is fairly old. I'd consider 4.0.3 or 4.1.0. The "dump" is not needed. On the netflow config page you should be able to disable it.
----- Original Message ----- From: Bradley D. Thornton [mailto:[email protected]] Sent: Wednesday, August 17, 2011 12:04 AM To: Ntop Mailing list <[email protected]> Subject: [Ntop] Errors creating and accessing a netflow-dump directory -----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 Sorry if a dupe comes in. I sent the original out prior to getting the confirmation that my sub was successful... I've installed ntop 3.3.8-2.el5.rf on CentOS 5.6, from the rpm at rpmforge and I'm invoking it with the following startup string ntop -i "bond0" -d -L -u ntop -P /var/ntop --skip-version-check - --use-syslog=daemon -w 6867 Everything appeared to be running just fine until I enabled netflow, and now I'm getting the following errors, piles and piles of them, filling up my logs and also, I believe, the reason I appear to be running up the cpu: <snip> Aug 16 13:44:40 us06mon1 ntop[423]: **WARNING** NETFLOW: mkdir(./netflow-dump/interfaces/NetFlow-device.2/), error 2 No such file or directory Aug 16 13:44:41 us06mon1 ntop[423]: **WARNING** RRD: [path=./netflow-dump][error=13/Permission denied] Aug 16 13:44:41 us06mon1 ntop[423]: **WARNING** RRD: [path=./netflow-dump/interfaces][error=2/No such file or directory] Aug 16 13:44:41 us06mon1 ntop[423]: **WARNING** RRD: [path=./netflow-dump/interfaces/NetFlow-device.2][error=2/No such file or directory] Aug 16 13:44:41 us06mon1 ntop[423]: **WARNING** NETFLOW: mkdir(./netflow-dump/interfaces/NetFlow-device.2/), error 2 No such file or directory Aug 16 13:44:42 us06mon1 ntop[423]: **WARNING** RRD: [path=./netflow-dump][error=13/Permission denied] Aug 16 13:44:42 us06mon1 ntop[423]: **WARNING** RRD: [path=./netflow-dump/interfaces][error=2/No such file or directory] Aug 16 13:44:42 us06mon1 ntop[423]: **WARNING** RRD: [path=./netflow-dump/interfaces/NetFlow-device.2][error=2/No such file or directory] Aug 16 13:44:42 us06mon1 ntop[423]: **WARNING** NETFLOW: mkdir(./netflow-dump/interfaces/NetFlow-device.2/), error 2 No such file or directory Aug 16 13:44:43 us06mon1 ntop[423]: **WARNING** RRD: [path=./netflow-dump][error=13/Permission denied] Aug 16 13:44:43 us06mon1 ntop[423]: **WARNING** RRD: [path=./netflow-dump/interfaces][error=2/No such file or directory] Aug 16 13:44:43 us06mon1 ntop[423]: **WARNING** RRD: [path=./netflow-dump/interfaces/NetFlow-device.2][error=2/No such file or directory] Aug 16 13:44:43 us06mon1 ntop[423]: **WARNING** NETFLOW: mkdir(./netflow-dump/interfaces/NetFlow-device.2/), error 2 No such file or directory Aug 16 13:44:43 us06mon1 ntop[423]: **WARNING** RRD: [path=./netflow-dump][error=13/Permission denied] </snip> I'm not sure where this directory is supposed to be. I've tried creating the following: /var/ntop/rrd/netflow-dump /var/ntop/rrd/interfaces/netflow-dump /var/ntop/netflow-dump In each of the cases above I've followed up by chown'ing and chmod'ing as in the following example: # chown -Rv ntop.ntop netflow-dump changed ownership of `netflow-dump' to ntop:ntop # chmod -Rv 700 netflow-dump mode of `netflow-dump' changed to 0700 (rwx------) # ls -la total 2260 drwxrwxr-x 4 ntop nobody 4096 Aug 16 13:50 . drwxr-xr-x 31 root root 4096 Aug 11 15:55 .. - -rw-r----- 1 root root 14621 Aug 16 13:50 addressQueue.db - -rw-r----- 1 root root 1228981 Aug 16 13:49 dnsCache.db - -rw-r----- 1 root root 12288 Aug 10 15:32 fingerprint.db - -rw-r----- 1 root root 12288 Aug 10 15:44 LsWatch.db - -rw-r----- 1 root root 1044776 Aug 10 15:32 macPrefix.db drwx------ 2 ntop ntop 4096 Aug 16 13:50 netflow-dump - -rw-r----- 1 root root 12566 Aug 11 09:33 ntop_pw.db - -rw-r----- 1 root root 13766 Aug 12 17:08 prefsCache.db drwx------ 5 ntop ntop 4096 Aug 16 13:27 rrd I've tried restarting ntop a couple of times, even though I figure that if I create this *netflow-dump* directly in the correct location I shouldn't have to, yet I'm still getting the syslog errors above. Perhaps the problem I'm running into is that I'm having trouble determining where ./netflow-dump should be? In all of the other references I've come across when searching for an answer the logs all seem to show the absolute paths, like /var/lib/ntop.... or /usr/local/var/ntop..., but where is this relative path, and am I barking up the wrong tree to correct this issue? Any assistance is most appreciated. - -- Bradley D. Thornton Manager Network Services NorthTech Computer TEL: +1.760.666.2703 (US) TEL: +44.203.318.2755 (UK) http://NorthTech.US -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Find this cert at x-hkp://pool.sks-keyservers.net iQEcBAEBAwAGBQJOS0vrAAoJEE1wgkIhr9j3j+wIAIYhwJdf4X8ymylZxIJMkMwU QkW6E6LQ2y0DqtNklTdctB4kUfmIlWFqugfoLFjeZBRZqw7syHFemCuzGsz80t4j 7G7yAM8yss7nvygSkw8dPzMaAalTNPhQmzhrLmVM2JnRokCLyKTZaW0w7AR6tuQ3 QmuDQTEuoSK7E/Ukdu36PLn7sqVGwhktG7uIVOf67vZna3SIgA4Li/WzwrOxDefh QniKnhKxL4ikROUJA/PZpiyi5B5Mp/+Ad0wNLsr9PW5y5wa23C3JY1BsdDS5qtP/ dKSfQ7NkNvCNCSGgMXfK9TYVJoRLj0qZcoEJ+me8YhmaQNRLV4jpu9lHxEIvhGw= =HyUW -----END PGP SIGNATURE----- _______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop <font size="1"> <div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'> </div> "This email is intended to be reviewed by only the intended recipient and may contain information that is privileged and/or confidential. If you are not the intended recipient, you are hereby notified that any review, use, dissemination, disclosure or copying of this email and its attachments, if any, is strictly prohibited. If you have received this email in error, please immediately notify the sender by return email and delete this email from your system." </font> _______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
