OPBNOS R2.5
Release
  • Open Packet Broker
  • What's New?
  • Getting Started
    • Licensing
    • Limitations
    • Image Management
      • Installing OPBNOS from ONIE
      • Installing OPBNOS from USB Drive
      • Image Upgrade from OPBNOS
      • Selecting OPBNOS on next boot
      • Removing available images
      • Rebooting the Switch
    • Supported HwSku
    • Scalability
    • Downloads
  • CLI Configuration Guide
    • Configuring License
    • Configuring Hostname
    • Configuring Username
    • On-Box FlowVision
    • Configuring AAA
      • Configuring AAA
      • Configuring TACACS
      • Configuring RADIUS
    • Interface Management
      • Configuring Management Interface
      • Configuring Physical Interface
    • Link Layer Discovery Protocol (LLDP)
      • Enabling LLDP
      • Displaying LLDP Neighbors
    • Configuring Interface Description
    • Configuring Auto Negotiation
    • Configuring FEC
    • Configuring Maximum Transition Unit
    • Configuring Port Speed
    • Configuring Interface Type
    • Configuring VLAN Modes
    • Configuring Loopback Mode
    • Configuring Packet Slicing
    • Configuring Ingress VLAN
    • Configuring Egress Tagging
    • Configuring Tx-only
    • Configuring An-clause
    • Configuring PortChannel
    • Configuring LAG Hash
    • Configuring Flows and Rules
      • Configuring Network Ports
      • Configuring Tool Ports
      • Configuring Flows
      • Configuring Flow Description
      • Configuring Flow Rules (NVIDIA)
      • Configuring Flow Rules (Broadcom)
      • Configuring Flow Match Expression Rules
      • Configuring Flow UDF Rules
      • Configuring Push/Pop VLAN
      • Configuring Flow Override Action(s)
      • Display Flow Information
      • Clear Flow Counters
    • Configuring GTP Flow
    • Configuring VxLAN Flow
    • Configuring SNMP
      • Configure SNMP community
      • Configuring SNMP Trap
      • Configuring SNMP Threshold
      • Configuring SNMP User
      • Configuring SNMP Location
      • Configuring SNMP Contact
    • Configuring SYSLOG
    • Ping
    • Traceroute
    • Configuring NTP
    • Configuring Timezone
    • Configuring sFlow
    • Display Interface Information
      • Front Panel Port Mapping
    • Display System Information
      • Interface Transceiver Information
      • System Uptime
      • Reboot Cause
      • Show Environment
      • Show System Memory
      • Show Docker Memory
      • Show Services
      • Show Platform Fan
      • Show platform pcieinfo
      • Show Platform PSU
      • Show Platform SSD
      • Show Platform Summary
      • Show Platform Syseeprom
      • Show Platform Temperature
    • Configuration Management
      • Copying Files To Device
      • Copying Files From Device
      • Copying Running and Startup Configuration
      • Saving Configuration
      • Display Configuration
      • Clearing Startup configuration
    • Zero Touch Provisioning
      • DHCP Discovery
      • ZTP Boot File
      • Enable ZTP
    • Troubleshooting
  • Aviz FlowVision Graphical User Interface Guide
    • FlowVision Controller Installation
      • FV ESXi Host Installation
      • FV VirtualBox Installation
    • System
      • Viewing the Dashboard
      • Accessing System and Device Information
      • Managing Topologies
      • Managing Devices
      • Viewing System Log
      • Managing Users
      • Performing Backup and Restore
      • Viewing Audit Logs
    • Configuration
      • Configuring Ports
      • Configuring Port Groups
      • Configuring Rule Templates
      • Configuring Flows
    • Statistics
      • Viewing Port Statistics
      • Viewing Flow Statistics
    • Help
  • REST API Guide
    • FLOW
    • Interface Management
    • Port Channel
    • LLDP
    • SNMP
    • System and Platform
    • Statistics
  • Use Cases
    • For Engineers
      • VxLAN Deployment (NVIDIA)
      • GTP Deployment
      • Truncation and Load Balancing
      • Ingress VLAN and Egress Tagging
      • Loopback-mode Port
      • VLAN Mode/Tag Actions
    • Command Reference
      • Converting Network-to-Tool port
      • Configuring 1G Electrical SFP
      • Enabling FlowVision On-box Support
  • Solution Integration
    • Network Visibility and Analysis with OPB, Arkime, Elasticsearch & Kibana
      • Installation Pre-Requisites
      • Solution Components
      • Configuring OPBNOS
      • Installing Arkime
      • Installing Kibana
      • Troubleshooting
  • Support
    • How to contact Aviz Networks Support?
Powered by GitBook
On this page

Was this helpful?

  1. Solution Integration
  2. Network Visibility and Analysis with OPB, Arkime, Elasticsearch & Kibana

Installing Arkime

PreviousConfiguring OPBNOSNextInstalling Kibana

Last updated 1 year ago

Was this helpful?

  • Download the Arkime installation scripts from

  • Copy the tar to the Arkime server and extract using the below command

aviz@npbsrv01:~/OPB_Arkime$ tar -zxvf OPB_Analyzer.tar.gz 
OPB_Analyzer/
OPB_Analyzer/stop.sh
OPB_Analyzer/elasticsearch.tar
OPB_Analyzer/start.sh
OPB_Analyzer/arkime.tar
aviz@npbsrv01:~/OPB_Arkime$

  • Move to the extracted folder

aviz@npbsrv01:~/OPB_Arkime$ cd OPB_Analyzer/
aviz@npbsrv01:~/OPB_Arkime/OPB_Analyzer$ ls -l
total 1208660
-rw------- 1 aviz aviz 620387328 Dec 23 04:15 arkime.tar
-rw------- 1 aviz aviz 617262080 Dec 23 04:16 elasticsearch.tar
-rwxrwxr-x 1 aviz aviz      1403 Dec 23 05:21 start.sh
-rwxrwxr-x 1 aviz aviz       160 Dec 23 04:43 stop.sh
aviz@npbsrv01:~/OPB_Arkime/OPB_Analyzer$

  • Add permission to execute ‘start.sh’ and ‘stop.sh’ scripts

aviz@npbsrv01:~/OPB_Arkime/OPB_Analyzer$ sudo chmod +x start.sh
[sudo] password for aviz:
aviz@npbsrv01:~/OPB_Arkime/OPB_Analyzer$ sudo chmod +x stop.sh
aviz@npbsrv01:~/OPB_Arkime/OPB_Analyzer$

  • Execute the ‘start.sh’ script, the script will perform the following actions

    1. Start Local ES storage node on port 9200

    2. Setup directories for PCAP and Log capture

    3. Ask the user for Interfaces to capture data on

    4. Start the Arkime container

aviz@npbsrv01:~/OPB_Arkime/OPB_Analyzer$ sudo ./start.sh 
Loading docker images...
Loaded image: avizdock/docker-arkime:latest
Loaded image: docker.elastic.co/elasticsearch/elasticsearch:7.17.3
Enter Semicolon ";" separated list of interfaces to listen for live traffic: enp130s0f1
vm.max_map_count = 262144
f07938f9e08183c763791733cda1bd19664675b44269fa7bc7e8d800001156b8
18f93340d929695b81915bebf8ed4a275439a25c4542a33944f093115facc17c
Access Arkime Viewer at:
http://<host>:8005
username: admin
password: admin

waiting for initialization...

aviz@npbsrv01:~/OPB_Arkime/OPB_Analyzer$

Arkime uses Elasticsearch(ES) for indexing and searching, So ES must be installed before starting Arkime.

  • Open URL http://<arkime-server-ip>:8005/ from your favourite browser and enter the below credentials

    • User: admin

    • Password: admin

here
Arkime Dashboard