ntopng icon indicating copy to clipboard operation
ntopng copied to clipboard

Published 20 hours ago verified publisher icon ntop

License management for ntopng pod in Kubernetes

Open OCrylic opened this issue 2 years ago • 10 comments

Hi,

What would you like to add or change?: Add the possibility to use a unique license for a ntopng pod in Kubernetes

Why do you and others need this?: A pod in Kubernetes may change IP address, MAC address or host (worker node) very quickly. Therefore, the license cannot be bound to those.

I did not find any information about this case so I am writing you this issue and maybe you can help me to deal wih ntopng into Kubernetes.

Best regards.

OCrylic avatar Oct 03 '22 12:10 OCrylic

@OCrylic I guess the workaround we use with Docker (please read https://www.ntop.org/support/faq/license-inside-a-container/) does not work for you, as that assumes you can provide visibility on the host network interfaces (using –network=host)

cardigliano avatar Oct 03 '22 13:10 cardigliano

Hi Alfredo,

Thank you for you tip. I already saw this workaround. technically it can be done with the option hostNetwork: true in Kubernetes but in my case this is not possible for two reasons:

  • It "breaks" the network for this pod/container as it gets the IP address of the worker node and not the IP address of Kubernetes pod dedicated subnet. Plus, Kubernetes does not advice to use this.
  • If the pod move to an other worker node for several reason (fist node is unreachable, ...), it will get the information of this new host and will not work

OCrylic avatar Oct 05 '22 08:10 OCrylic

Hi @cardigliano I have the same problem with Docker swarm, so I think if we can find another method to validate license into docker containers without "MODE:host" it will be a great helper.

For example, by mounting device file or something like that

midoelhawy avatar Oct 07 '22 21:10 midoelhawy

Hi @cardigliano any news about this issue?

midoelhawy avatar Oct 22 '22 21:10 midoelhawy

@midoelhawy this is in our todo list, it will be added to the roadmap asap

cardigliano avatar Oct 24 '22 07:10 cardigliano

Great, thank you

midoelhawy avatar Oct 24 '22 08:10 midoelhawy

@lucaderi @cardigliano any news about this issue ?

midoelhawy avatar Mar 06 '24 16:03 midoelhawy

@midoelhawy we are currently working on new cloud/service licenses that should also address your use case

cardigliano avatar Mar 06 '24 16:03 cardigliano

Here for the upvote on this issue.

iPenguin avatar May 22 '24 16:05 iPenguin

The ntop cloud (beta) has been announced in https://www.ntop.org/ntop/ntop-spring-webinar-ntop-cloud-llm-ai-smartnic-april-30th-3pm-cet-9-am-est/ It includes (beta) support for cloud licenses in ntopng and nprobe, which address the container licensing issues.

cardigliano avatar May 22 '24 16:05 cardigliano

As @cardigliano already told, by using the ntop cloud this issue can be addressed. In case you have troubles please re-open this ticket

MatteoBiscosi avatar Jun 05 '24 16:06 MatteoBiscosi