Nagios is a host and service monitor designed to inform you of network
problems before your clients, end-users or managers do. The monitoring
daemon runs intermittent checks on hosts and services you specify
using external "plugins" which return status information to Nagios.
When problems are encountered, the daemon can send notifications out
to administrative contacts in a variety of different ways (email,
instant message, SMS, etc.). Current status information, historical
logs, and reports can all be accessed via a web browser.
The general idea of these scripts is to check as many things as possible with
SNMP: disks, memory, load, network interfaces, running processes, etc...
The other idea is to select disks, interfaces, process using regular
expressions:
- it is possible to test more than one disk/int/process in one Nagios check
(ex.: eth* instead of eth0,eth1,eth2,...)
- you only have to provide a unique part of the name to select a
disk/int/process (ex. : "C:" instead of "C:\ Label: Serial Number xxxxxxx"
makes it easy to use on multiple Windows hosts).
Most of these scripts can make performance outputs.
nagiosgraph is an application to collect performance data from nagios
plugins, insert the data into rrdtool database, and generate webpages
with rrdtool graphs of the performance data. nagiosgraph is easy to
configure, and ready to use for many nagios plugins.
NagiosQL is a web based administration tool for Nagios.
It helps you to easily build a complex configuration with all options,
manage and use them. NagiosQL is based on a webserver with PHP, MySQL and
file access to the Nagios configuration files.
The BPF Traffic collector
Enhanced version of trafd (/usr/ports/net/trafd/)
Netdot is an open source tool designed to help network administrators
collect, organize and maintain network information.
Netdot features include:
- Device discovery and Layer 2 topology discovery / graphing.
- IPv4 and IPv6 address space management (also referred to as IPAM),
including hierarchical organization, address block visualization and
IP and MAC address location and tracking.
- Cable plant information including: sites, rooms, jacks, closets,
inter and intra-building fiber and copper wiring, circuits, etc.
- Contact information for related entities: departments, providers,
vendors, BGP peers, etc.
- Netdot can generate configuration files for various other tools,
including: Nagios, Sysmon, RANCID, Cacti, ISC BIND and ISC DHCPD.
Network Leak Finder is a collection of small perlscripts that detects
connectivity between network segments. It is mostly useful to detect "leaks" in
large organizations that have private network segments physically separated
from the Internet.
NetSPoC is a tool for security managment of large computer networks with
different security domains. It generates configuration files for packet
filters controlling the borders of security domains.
NetSPoC provides its own language for describing security policy and topology
of a network. The security policy is a set of rules that state which packets
are allowed to pass the network and which not. NetSPoC is topology aware: a
rule for traffic from A to B is automatically applied to all managed packet
filters on the path from A to B.
Currently NetSPoC generates ACLs and static routing entries for Cisco routers
and PIX firewalls. Support for network address translation and IPSec has not
been implemented yet.
Nitpicker is a free IP flow accounter. It started because the commercial
accounting software was just not fast, precise and reliable enough to fit
today's ISP/MSP requirements.
Here are some of the large benefits of nitpicker:
- 100% free, in public domain
- Designed for speed
- Designed to run reliably under djb's daemontools
- Consumes minimal processor power
- Runs within little memory
- Does not banally summarize the traffic
- Stores all relevant traffic data for comprehensible interaction
NFDUMP tools support netflow v5, v7 and v9 capturing and processing.
nfcapd - netflow capture daemon.
Reads the netflow data from the network and stores the data into files.
nfdump - netflow dump.
Reads the netflow data from the files stored by nfcapd. It's syntax is similar
to tcpdump. If you like tcpdump you will like nfdump.
nfprofile - netflow profiler.
Reads the netflow data from the files stored by nfcapd. Filters the netflow
data according to the specified filter sets (profiles) and stores the
filtered data into files for later use.
nfreplay - netflow replay.
Reads the netflow data from the files stored by nfcapd and sends it over
the network to another host.
ft2nfdump - flow-tools to nfdump - optional component.