Thomas White tribalchicken

## arkime_on_freebsd.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                tribalchicken
                / arkime_on_freebsd.md
            
            
              Created
              August 1, 2021 09:05
            
              
                Install Arkime (formerly Moloch) on FreeBSD
              
          
    Install and configure Arkime on FreeBSD 12 / FreeBSD 13

Arkime (formerly Moloch) is a large scale, open source, indexed packet capture and search system. It is available at https://arkime.com
Installing Arkime on FreeBSD is not officially supported according to the Arkime page - It can be done, but requires a bit of massaging.
It's fairly straightforward to get it running on FreeBSD. The key elements are to get the configure parameters right, and a few other small modifications. One of the dependencies fails to build on FreeBSD (not an Arkime issue), but that can be worked around very easily.
Install required packages


## askUdisks2.py
def askUdisks2():
    """
    Ask udisks2 via D-Bus for the mount point of the first automounted usb device.
    """
    bus = dbus.SystemBus()
    udisks2obj = bus.get_object('org.freedesktop.UDisks2', '/org/freedesktop/UDisks2')
    udisks2om = dbus.Interface(udisks2obj, 'org.freedesktop.DBus.ObjectManager')
    udisks2 = udisks2om.GetManagedObjects()

    def findBlockDevice(drive,objects):
	def askUdisks2():
	"""
	Ask udisks2 via D-Bus for the mount point of the first automounted usb device.
	"""
	bus = dbus.SystemBus()
	udisks2obj = bus.get_object('org.freedesktop.UDisks2', '/org/freedesktop/UDisks2')
	udisks2om = dbus.Interface(udisks2obj, 'org.freedesktop.DBus.ObjectManager')
	udisks2 = udisks2om.GetManagedObjects()

	def findBlockDevice(drive,objects):