Both sides previous revision Previous revision Next revision | Previous revisionLast revisionBoth sides next revision |
linux_router:misc [2023-12-03 Sun wk48 12:46] – [ntopng] baumkp | linux_router:misc [2023-12-03 Sun wk48 12:54] – [Docker Setup & Basic Commands] baumkp |
---|
I tried ntopng again in December 2023. I ran in a Docker container on my Router, although markedly improved since trying a few years ago this this program suite still uses uses a lot of resources on my router which loads it up close to 50%. There are occasional reports of dropped packet and such, further indicating overload.\\ I noted a problem with installing the Docker version. The Docker package documentation and defaults are to the ''latest'', yet the available package is listed as ''stable'', e.g. ''docker run -it -p 3000:3000 --net=host ntop/ntopng:stable -i br0'' versus the instructed ''docker run -it -p 3000:3000 -v $(pwd)/ntopng.license:/etc/ntopng.license:ro --net=host ntop/ntopng:latest -i br0'' \\ | I tried ntopng again in December 2023. I ran in a Docker container on my Router, although markedly improved since trying a few years ago this this program suite still uses uses a lot of resources on my router which loads it up close to 50%. There are occasional reports of dropped packet and such, further indicating overload.\\ I noted a problem with installing the Docker version. The Docker package documentation and defaults are to the ''latest'', yet the available package is listed as ''stable'', e.g. ''docker run -it -p 3000:3000 --net=host ntop/ntopng:stable -i br0'' versus the instructed ''docker run -it -p 3000:3000 -v $(pwd)/ntopng.license:/etc/ntopng.license:ro --net=host ntop/ntopng:latest -i br0'' \\ |
Another thing I do not like about this package is that the free community version is a significantly cut down of the full paid version. The cost on the paid versions are substaincial and I can simply not justify for non-comerical home use. There is no general individual personal free full use version available.\\ | Another thing I do not like about this package is that the free community version is a significantly cut down of the full paid version. The cost on the paid versions are substaincial and I can simply not justify for non-comerical home use. There is no general individual personal free full use version available.\\ |
I have decided not to use. | **Hence I have decided not to use this software.** |
| |
tl;dr ++++Systemd stuff, not relevant with use of Docker version| | **tl;dr** ++++Systemd stuff, not relevant with use of Docker version| |
<code>There seem to be 2 main services to enable/disable/start/stop, nprobe and ntopng: | <code>There seem to be 2 main services to enable/disable/start/stop, nprobe and ntopng: |
* ''sudo systemctl stop ntopng'' | to stop (or start) | * ''sudo systemctl stop ntopng'' | to stop (or start) |
The Docker installation instructions for Ubuntu from Docker [[https://docs.docker.com/engine/installation/linux/docker-ce/ubuntu/#uninstall-old-versions|Get Docker CE for Ubuntu]]. | The Docker installation instructions for Ubuntu from Docker [[https://docs.docker.com/engine/installation/linux/docker-ce/ubuntu/#uninstall-old-versions|Get Docker CE for Ubuntu]]. |
| |
__**This is pretty old, I played with it circa 2017, and have not used Docker since. I have successfully been using full KVM based VMs for my main machines and so have not had much need for Docker**__ \\ | __**This is pretty old, I played with it circa 2017, and have not used Docker since. I was successfully been using full KVM based VMs for my main machines and so did not have much need for Docker**__ \\ |
That being said, I can see the benefits of containerisation, such as Docker, versus full virtual machines, such as KVM. Of course there are also benefits with full VMs!. | That being said, I can see the benefits of containerisation, such as Docker, versus full virtual machines, such as KVM. Of course there are also benefits with full VMs!. |
| |
| In 2022 I revisited Docker and basically have move my various VM applications to Docker containers/ stacks. I run my Docker instance in a VM to isolate Docker from bare metal. This is primarily as Docker plays around with iptables. I do not like this, particularly on my main router machine that I use on bare metal nftables as the router/fire software. |
====Docker Host Security==== | ====Docker Host Security==== |
| |