Skip to content

Commit aca6afc

Browse files
gustavo-iniguez-goyagustavo-iniguez-goya
authored
Update Nodes.md
1 parent e2a7b1c commit aca6afc

File tree

1 file changed

+48
-17
lines changed

1 file changed

+48
-17
lines changed

wiki/Nodes.md

Lines changed: 48 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -1,41 +1,72 @@
11
A node is a daemon running on a machine. You can install the daemon on multiple machines, and manage them from the server (i.e.:GUI).
2+
The GUI or TUI acts as the server.
23

34
> ℹ️ Note: if you want to install **only** the daemon from the Debian repositories, you'll have to execute this command:
45
>
56
> `$ sudo apt install --no-install-recommends opensnitch` (otherwise it'll install both, the daemon and the GUI)
67
7-
![image](https://user-images.githubusercontent.com/2742953/197076010-2502855a-cdae-4f03-90bc-7a715efbbf64.png)
8+
<p align="center">
9+
<img src="https://user-images.githubusercontent.com/2742953/197076010-2502855a-cdae-4f03-90bc-7a715efbbf64.png"/>
10+
</p>
811

9-
You can view the list of known nodes from the tab Nodes:
12+
You can view the list of connected nodes from the Nodes tab:
1013

11-
![image](https://user-images.githubusercontent.com/2742953/82752021-9d328380-9dbb-11ea-913e-80f7b551a6c7.png)
14+
<img width="1074" height="470" src="https://github.com/user-attachments/assets/49199d84-a554-4775-b4fc-0b9e618feb25" />
1215

13-
<img width="600" src="https://user-images.githubusercontent.com/2742953/218576821-67fa3524-520a-4f5f-9656-3185a758022b.png">
16+
----
1417

18+
And by double clicking on a node, you can see the network activity of that node.
1519

16-
And by double clicking on a node, you can see the network activity for that node.
20+
<img width="1166" height="429" src="https://github.com/user-attachments/assets/2e83f239-d2ef-45e3-9148-babbed7e74e9" />
1721

18-
#### Configuration
1922

20-
As explained in the [Configurations](https://github.com/evilsocket/opensnitch/wiki/Configurations#gui) section, you have to launch the daemon as follow in order to accept connections from remote nodes:
23+
### Configuration
24+
25+
By default, the GUI (server) and the nodes listen on a unix socket. If you want to manage multiple nodes, you have to change the GUI (server) address from the Preferences -> UI tab.
26+
27+
First change the (server) address of the node from the Preferences dialog, Nodes tab:
28+
29+
<img width="646" height="591" src="https://github.com/user-attachments/assets/e1d8666b-5487-4e78-bb86-f662f8427da3" />
30+
31+
<p>The node will disconnect and try to reconnect to the new address.</p>
32+
33+
<p>Then change the address of the GUI (server):</p>
34+
35+
<img width="646" height="591" src="https://github.com/user-attachments/assets/072f63aa-369e-40e6-bf3f-99395d931018" />
36+
37+
<p></p>
38+
<p></p>
39+
40+
> ⚠️ Important: Before changing the GUI (server) address, always change the node address. Otherwise you'll have to edit the daemon configuration manually.
41+
>
42+
43+
44+
45+
<p></p>
46+
<p>You can also launch the GUI from the terminal like this:</p>
2147

2248
`$ /usr/local/bin/opensnitch-ui --socket "[::]:50051"`
2349

2450
It'll make the GUI listen on port 50051, any IP. You can also use an IP: `$ /usr/local/bin/opensnitch-ui --socket "127.0.0.1:50051"`
2551

26-
Now you need to configure each node to connect to the server. In `/etc/opensnitchd/default-config.json` set the Address field to the server address:
52+
--
53+
54+
### Rules configuration
55+
56+
<p>The GUI also allows to configure nodes' rules, both application and system firewall rules.</p>
57+
58+
<p>When there's more than one node connected to the GUI, every dialog of the GUI will display the list of nodes:</p>
2759

28-
```json
29-
"Server":
30-
{
31-
"Address":"192.168.1.100:50051",
32-
},
33-
```
60+
<p>Rule</p>
61+
<p></p><img width="560" height="549" src="https://github.com/user-attachments/assets/9ef76be1-2fe0-468d-b6bb-733e60503daa" /></p>
3462

35-
Once a node is connected, you can also change it from the GUI, without connecting to the node via SSH, etc:
63+
<p>System firewall rule</p>
64+
<p><img width="510" height="353" src="https://github.com/user-attachments/assets/a111b024-424b-4873-97f0-45a3c485cb5b" /></p>
3665

37-
![image](https://user-images.githubusercontent.com/2742953/196782343-bbc28fea-f9a1-4842-a285-e557c6ac5b27.png)
3866

39-
(the field Address refers to the server address where the node will connect to)
67+
<p>Use the Rules tab to view and monitor the rules of all nodes:</p>
68+
<p><img width="1170" height="472" src="https://github.com/user-attachments/assets/c9320c41-dba8-4667-9e20-d37ef7f5ba7a" /></p>
4069

70+
<p>and apply actions in batch (delete, apply, .. rules)</p>
4171

72+
<p><img width="839" height="529" src="https://github.com/user-attachments/assets/7473531b-09d7-4784-a411-a85d8e639c60" /></p>

0 commit comments

Comments
 (0)