Hi Luca,
Do you mean libntapi.so and libntos.so are no longer part of the PF_RING 6.6.0 deb package? That would simplify things in the SO custom installer of ntopng. Thanks for pointing that out.
The primary issue behind needing the custom installer is that the ntopng deb has a dependency on a very specific pfring package:
dpkg: dependency problems prevent configuration of ntopng:
ntopng depends on pfring (= 6.6.0-1253); however:
Package pfring is not installed.
but I can't safely install the
packages.ntop.org pfring deb on SO because it conflicts with Doug's build of PF_RING 6.4.1 which is spread across a few securityonion-pfring-* packages. Installing it breaks SO.
I know ntopng opportunistically makes use of PF_RING if present, but the ntopng deb package appears to mandate the install of the pfring deb from
packages.ntop.org. Building from tarball would be an alternative, except that as I recall, trying to build ntopng from source on a SO platform did not work out last time I explored that option. It might be nice to publish ntopng-nopfring versions of the deb files so that environments where PF_RING is not wanted or possibly already present under a different package name, could still take advantage of the deb packages. What do you think?
Since Doug is planning on upgrading SO to PF_RING 6.6 this month anyway, I'm happy to wait for that and then tweak my custom installer as needed.
Regards,
Kevin