Feature #6204
closed
Integrate ntopng with pfSense - assistance required by ntopng developer
0%
Description
Hi
Apologies if this is doubling up (as I can see various threats on it on the pfSense forum), but Luca Deri who is a lead developer of the ntopng package is looking for some assistance on how best to integrate ntopng with pfSense so that pfSense can use the DPI technologies/classification offered by ntopng in firewall rules.
I couldn't see that there was a ticket open in this context for pfSense so thought it helpful to join everyone up (you may of course already be in contact with him).
The ntopng issue on github is here: https://github.com/ntop/ntopng/issues/297
Specifically, the question is how to mark the traffic processed by ntopng in a way that pfSense can subsequently reference in a firewall rule or similar.
Thanks.
Updated by Chris Buechler almost 8 years ago
- Status changed from New to Duplicate
duplicate of #6443
Updated by Andrew - almost 8 years ago
Hi
I think this ticket is different to #6443.
#6443 is simply about getting ntopng back into pfSense 2.3, following conversion to bootstrap. That's now pretty much done and it's in beta.
This ticket is about a subsequent task, i.e. once ntopng is back in pfSense joining up the ntopng and pfSense developers to allow ntopng and pfSense to talk to each other. More specifically, the intention is to allow nDPI based traffic categorisation (from ntopng) to be used in firewall rules.
So it would be possible, for example, to set up a firewall rule to block all traffic marked as "Skype" by the nDPI engine.
I think therefore that this ticket and #6443 are talking about different things.
Thanks.
Updated by → luckman212 almost 8 years ago
Wow, this would be incredible (being able to mark traffic based on ntop filters) - did not even know that was theoretically possible. Starring this one.