Wednesday, July 28, 2010

Network Traffic Monitoring



network traffic monitoring software
NMTF toolsA big list of network monitoring tools. And I do mean BIG.
sniffers2005-7-12: Steve Baum's list of network sniffing tools.
Zenoss2007-6-9: Open Source Enterprise Monitoring. Has in impressive set of network monitoring features. Very nice web site too!
IPTrafA Statistics Utility for Monitoring IP Networks.
ntopntop is a network traffic probe that shows the network usage, similar to what the popular top Unix command does. ntop is based on libpcap and it has been written in a portable way in order to virtually run on every Unix platform and on Win32 as well.
PloadGraphical monitoring of PPP traffic.
KsnuffleKSnuffle is a network packet sniffer for KDE.
IPACipac Linux ip accounting package.

text-based packet monitoring software
wireshark.orgFormerly called `Ethereal' network analyzer. Analyzes log files in tcpdump and other formats. Can also run live.
IPauditLogs aggregate traffic between host pairs.
tcpdumpIncludes libpcap library. I use tcpdump several times a day to monitor traffic.
tcpdump2asciiPerl script to convert tcpdump files to ascii.
nstreamsFrom HervĂ© Schauer Consultants, France. Nstreams is a program which analyzes the streams that occur on a network. It displays which streams are generated by the users between several networks, and between the networks and the outside.
supersnifferImproved version of tcpdump?
ngrep 
NetPeekNetPeek is a GUI-based network monitoring and diagnosis tool. It captures packets from the local network and displays them to the user in two forms... Requires GTK and Gnome.
TCP SnifferMarcelo Gornstein's free network tools, including `Easy Sniffer', `Send Packet' and `TCP Listen'.
xipdumpA snazzy IP packet monitoring tool for X window system, withimpressive screenshot.
WinDumpTCPdump for Windows.
MonikerUnsophisticated command-line perl scripts to monitor traffic and create CSV files of observed traffic.

remote computer monitoring software
NMAPFree open source network probing utility. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) they are offering, what operating system (and OS version) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics.
nessus.orgThe "Nessus" Project aims to provide to the internet community a free, powerful, up-to-date and easy to use remote security scanner.
nagiosAn open source host, service and network monitoring program.
MonSome sort of network monitoring tool. "mon" is a tool for monitoring the availability of services. Services may be network-related, environmental conditions, or nearly anything that can be tested with software. Here is the top web page.

remote monitoring software for web-sites
monit/munin2006-5-8: Server Monitoring With munin And monit.
Cuevision2004-9-28: Commercial software to monitor websites. A tool to monitor your website, monitor your servers and monitor your network devices.
nPULSEnPULSE is a web-based network monitoring package for Unix-like operating systems. It can quickly monitor tens, hundreds, even thousands of sites/devices at a time on multiple ports. See also thefreshmeat link.
XACCTXACCT Technologies has created the first and only Network to Business (N2B) platform that provides a bi-directional, real-time link between the physical network infrastructure and Operations and Business Support Systems (OSS/BSSs) to enable advanced network and service usage and automated service provisioning.
dotcom-monitor.com2004-9-13: Commercial remote monitoring software for web sites. Dotcom-Monitor provides web site monitoring service that tests your website from multiple locations around the world as often as every minute simulating end-user behavior from each location.
GFI Network
Server Monitor
Commercial software which checks your network & servers for failures and fixes them automatically, before your network users notice them. Limited freeware version is also available.
Alchemy EyeAlchemy Eye is a system management tool that continuously monitors server availability and performance. In the event of network errors, Alchemy Eye can alert the network administrator by cell phone or pager. Commercial software. Seems to be intended for MS servers.
Server Nanny2004-4-18: Commercial software for remote monitoring of systems. Server Nanny Network Monitor monitors servers and network devices, sends problem notifications, performs actions, and logs performance data.

network traffic metrics
SurveyorSurveyor is a measurement infrastructure that is being currently deployed at participating sites around the world.
IPPMInternet Protocol Performance Metrics. An IETF Working Group.

internet end-to-end performance evaluation software
CAIDACooperative association for Internet data analysis. Tools and analyses promoting the engineering and maintenance of a robust, scalable global Internet infrastructure. They have a range of tools for measurement and visualisation.
PMA2004-9-17: Passive Measurement and Analysis. The goal of the PMA project is to deliver new insights into the operation, behavior, and health of the Internet, for the benefit of network users and operations. Passive header trace data provides the means to study workload profiles for a number of strategically located measurement points in high speed environments. We currently take daily measurements from OC3 through OC48 speeds.
BBMonitor2006-6-18: A commercial bandwidth monitoring tool for MS-Windows i386 machines. This software if a traffic performance measurement tool rather than a packet sniffer.
FireHunterA system for monitoring the network performance for users of an Internet access network. This system sets of alarms when users violate their SLAs. See their product information. This system is used by Qwest.
webperfThis open source software runs on Solaris, Linux, *BSD (not FreeBSD 3.2), and WinNT.
For the webmaster, It is hard to know how their web sites are performing. Just because a site is fast and responsive from your desk, doesn't mean that it is like that from around the world.
This project was started to help webmasters monitor the responsiveness of URLs on their sites (as well as their competitors) from different parts of the internet.
This software seems to be oriented more towards evaluating web servers rather than web access links for clients.
HypertrakThis is a white paper for commercial software to do server-oriented web performance analysis.

related stuff
spinning cube2004-6-2: The Spinning Cube of Potential Doom. The cube displays data from Bro along 3 axes and creates interesting visual results (port scansbarber poleslawnmower). See also the slashdot article.
state of the InternetRolling 24-hour graphs of end-to-end Internet performance.
Internet weather reportAnimated maps of current Internet lag.
SurveyorPaper on An Infrastructure for Internet Performance Measurements.
NetFactual.comWeb site which makes statistical surveys of the net.
netcraft site classifierThe UK Netcraft site's What's that site running? - tells you what server and OS a web site is running. E.g. you could check onwww.topology.org.
uptimebot.com2004-6-5: A really annoying service for monitoring web site uptime or something.
CyberAlertCyberalert 3.0 is a fully-automated Internet monitoring and Web clipping service.
false.netProvides some probing tools which have been abused against my web site.
Extreme trackingA site which provides very detailed info on visitors to particular sites. With the eXTReMe Tracker you get every advanced feature required to picture the visitors of your website. Conveniently arranged, numbers, percentages, stats, totals and averages.