Linux Links - The Linux Portal: Software/Monitoring/Network

Search/Browse

Related Sites

LinuxLinks Login

LinuxLinks News

· Silverlight makes its way onto Linux
· Debian and Ubuntu keys under attack
· Little thin client runs Linux
· $7 Soc runs Linux
· Linux examined: Fedora 9
· Asus to ship all motherboards with Linux
· Linux rides pillion on Mumbai city buses
· From newb to 100 with Ubuntu Linux 8.04
· Verizon Wireless to introduce Linux phones
· Red Hat’s Fedora 9 debuts with new features
(more...)

Latest Links

Java Clazz Utils
AZR3-JACK
p@rdalys
Virt-df
ANSI32
(more...)

Google Search

Top : Software : Monitoring : Network

Silverlight makes its way onto Linux
The first public release of Moonlight, which provides a Linux client implementation of Microsoft's Silverlight Rich Internet application (RIA) technology, was made available this week.

(Read more)

MATLAB

(commercial) MATLAB is a high-level language and interactive environment that enables you to perform computationally intensive tasks faster than with traditional programming languages such as C, C++, and Fortran. Read more

Links:

Nagios

Nagios is a host and service monitor designed to inform you of network problems before your clients, end-users or managers do. Read more hot

OpenNMS

OpenNMS is a scalable enterprise-class network monitoring and management platform, leveraging Java, XML/XSL, C/C++, and SOAP to get the job done. Read more hot

Pandora FMS

Pandora FMS is a monitoring application to watch systems and applications, that allows to know the status of any element of your systems, watch for your hardware, software, multi-layer system and Operating System. Read more hot

Specto

Specto is a desktop application that watches configurable events (such as website updates, emails, file and folder changes, system processes, etc) and then triggers notifications. Read more hot

check_aaccli

check_aaccli is a plugin for Nagios which checks the hardware health of Adaptec SCSI RAID controllers. To accomplish this, you must have installed the aaccli binary (from the aacapps package). The plugin checks the error log of single disks (with S.M.A.R.T.) and the health of mirror containers. new

Aimwatch

Aimwatch is a packet sniffer designed to reconstruct AOL Instant Messenger and ICQ information by passively collecting packets from the network.

akk@da

akk@da is a simple network monitoring system designed for small and middle size computer networks. Its purpose is to quick detect system or network fault and to display information about detected problem for administrator.

Alarm Pinger

Alarm Pinger is a tool which monitors various IP devices by simple ICMP echo requests.

AlarmMon

AlarmMon is an alarm monitoring system for TCP/IP-based networks. It consists of client part called "alarm", server part called "alarmsvr" and of several agents. All parts of the system works with one central registration database.

Angel Network Monitor

a simple yet useful tool to monitor the services on your network. Technically speaking, it's a Perl program that runs every 'n' minutes (usually fired from your cron) and calls different perl subprograms (referred as

aNTG

aNTG collects and displays network traffic statistics on a Linux-ish machine.

aps

a small tool for analyzing network traffic

Argo

Argo is a monitoring system for the Xen hyperviser, comprised of a network server which runs upon your Xen host and any number of clients which connect to that server over a socket.

Argus

Argus is a fixed-model Real Time Flow Monitor designed to track and report on the status and performance of all network transactions seen in a network traffic stream. Read more

Argus Monitoring System

a system and network monitoring application. It will monitor nearly anything you ask it to monitor (TCP + UDP applications, IP connectivity, SNMP OIDS, etc).

ArgusEye

ArgusEye is a GUI for the Argus network auditing suite. It aims at supporting daily work by providing a graphical user interface for traffic analysis and configuration management.

arpalert

arpalert uses ARP address monitoring to help prevent unauthorized connections on the local network.

arphound

Arphound is a tools that listens to all traffic on an ethernet network interface, and reports IP/MAC address pair, as well as events such as IP conflict, IP changes, IP addresses with no RDNS, various ARP spoofing, and packets not using the expected gateway. Reporting is done to stdout, to a specified file and/or to syslog.

ArpMonitor

ArpMonitor logs any ARP request to and from your machine or network.

ARPView

ARPView is a graphical user interface module for arpalert for watching the network discovery as it happens.

arpwatch

arpwatch monitors mac adresses on your network and writes them into a file.

ArsDigita MTA Monitor

designed for monitoring a group of mail transport agents administered by one or more administrators. The ArsDigita MTA Monitor wakes up every five minutes (configurable in the configuration file mmon.ini) and monitors both SMTP port response and MTA throughput

aupcheck

aupcheck helps to monitor NGI F4 Flat Internet connections.

Autostatus

a network and server monitoring program. It is designed to support large, arbitrarily complex networks of computers, and stillprovide feedback in a very timely fashion

Aware

a high performance distributed event processing framework built for systems management

Bandmin

Bandmin is a simple set of perl scripts designed to record and log ip accouting data. It can also display the data that it collects in a set of html pages. Bandmin currently has support for iptables, ipchains, UserIPAcct, ipfwadm, ipf, and ipfw.

Bandwidth Monitor NG

a small and simple curses-based bandwidth monitor for Linux or other systems with /proc/net/dev or net-tools netstat

BanFromLog

BanFromLog is a simple script to log any illegal user attempt of your SSHD daemon from the auth.log file.

Bartlby

Bartlby is a network and system monitor completely written in C, to provide a scaleable framework with the ability to monitor networks of various sizes. Bartbly consits of a core deamon, serveral plugins and the web-gui (php-extension).

bcnu

a web based system management tool which delivers information on the status of networked systems in a simple and easy to use manner

BENIDS

BENIDS is a pcap-based NIDS for Linux. It uses its own XML rule file format which allows arbitrary, complex boolean matching conditions.

Benson Distributed Monitoring System

Benson Distributed Monitoring System is an automated messaging and monitoring system designed to ease the life of a network, system,and database administrator. The communication portion is implemented in CORBA (currently BOA, and MICO), and thebackend logic and functionality is perl.

Big Brother

(commercial) Big Brother is a combination of monitoring methods. Unlike SNMP where information is just collected and devices polled, Big Brother is designed in such a way that each local system broadcasts it's own information to a central location. Simultaneously, Big Brother also polls all networked systems from a central location.

Big Sister

an SNMP-aware monitoring program consisting of a Web-based server and a monitoring agent. It runs under various Unixes and Windows

BigBen

a collection of four perl scripts useful to monitor a network

BigDaddy

BigDaddy is a program for monitoring servers. It is similar to Nagios, with the added benefit of also monitoring and controlling the crontab (or any scheduled application) across an entire fleet of servers. The application comes in the form of a daemon for monitoring and reporting as well as an easy-to-use Web-based GUI for controlling monitoring, viewing timelines of incidents, filing incidents and graphing statistics. The application is extensible with any sort of monitoring module and notification is based on a five step escalation process.

Blinky Network Usage Monitor

a graphical network usage monitor for Linux and Solaris. It displays the usage of one or more network interfaces using blinking lights (as in the dial-up system tray icon in Windows)

Blitzed Open Proxy Monitor

an open-source open proxy monitor, designed for use with hybrid-based ircds, although it can be used with slight modification on any server which has +c to show connects to opers and that supports KLINEs

bmon

bmon is a portable bandwidth monitor and rate estimator running on various operating systems. It supports various input methods for different architectures. Various output modes exist including an interactive curses interface, lightweight HTML output but also formatable ASCII output.

boinctail

BOINCTail displays the status of jobs running in the BOINC environment in a 'tail-like' way. That way, one doesn't need an X server to be able to monitor (for example) setiathome, lhcathome, etc.

bsnmp-regex

bsnmp-regex is a module for bsnmpd that allows the creation of SNMP counters from logs, program output, or other text data. The resulting data can then be queried or graphed with the usual SNMP tools.

Bungmeter

Bungmeter is fork of fnetload. It's a small network graph monitor that displays a graphical representation of the the data flowing in and out of a given network interface. It's goal to be small and lightweight, yet very useful.

Butterfly ISP Edition

(commercial) a timing system designed for environments in which time spent on the Internet is charged for

bwmeas

Bwmeas is a simple tool that continuously measures the number of packets and the number of bytes that are received in a specified time-interval. It can furthermore compute and print the average bandwidth for each such time-interval.

CaiCai

CaiCai is a system for monitoring whether certain hosts are dead or alive. It examines different services/aspects (DHCP, Ping test, etc), gives some stats on those and has an (user-defined) sound alarm in case something goes wrong.

CAIDA CoralReef

a comprehensive software suite developed by CAIDA to collect and analyze data from passive Internet traffic monitors, in real time or from trace files. Realtime monitoring support includes system network interfaces (via libpcap), FreeBSD drivers for Apptel POINT (OC12 and OC3 ATM) and FORE ATM (OC3 ATM) cards, and support for Linux drivers for WAND DAG (OC3 and OC12, POS and ATM) cards

Caligare Flow Inspector

(commercial) CFI (Caligare Flow Inspector) is a tool for processing and evaluating network traffic, using network flows export statistics sent by a router. It is also a user-friendly application used for network diagnostics. It has the added ability of real time monitoring and data analysis, in which you can find and locate network traffic transmitted over the local host and local networks.

CBan

displays the current traffic on the selected interface

CBLM

CBLM is a high performance latency (one-way and round-trip), packet loss and jitter monitoring probe. When run on two or more servers, a full mesh of connections is automatically setup between the probes. The full mesh of connections are used to transmit UDP packets between the probes. Statistics are collected and stored within a MySQL database.

Charles Web Debugging Tool

an HTTP proxy / HTTP monitor that enables a developer to view all of the HTTP traffic between their machine and the Internet. This includes requests, responses and the HTTP headers (which contain the cookies and caching information)

check_mysql_perf

check_mysql_perf is a plugin for Nagios that allows you to monitor various performance-related characteristics of a MySQL database.

Checkservice

a Perl script that monitors services on remote hosts

Chroniker

(commercial) Chroniker is availability monitoring software for servers, network appliances, databases and applications. It queries servers and applications for availability. Technical reports are generated instantly. Service Level Agreement (SLA) reports prove you are exceeding best practices and standards. Automated Alerts are sent via email, SMS etc. when thresholds are exceeded.

Cricket

an extremely flexible system for monitoring trends in time-series data. Cricket was expressly developed to help network managers visualize and understand the traffic on their networks

Daemonzup

Daemonzup is a server monitoring tool that will check if several services/daemons are up on a specific server. It is run from a cron job. If a daemon appears to be dead, it will send email to admins, plus it may also try to restart it. It is designed for GNU/Linux and depends on Perl. It can monitor whatever software is daemonized: apache, MySQL, SSH, cron, xinet, syslog, etc.

Darpwatch

a solution for monitoring ethernet activity across many different ethernet networks. Darpwatch is based on the original arpwatch source from UCB

DB based NetFlow Collector

DB based NetFLow Collector aims to collect Cisco NetFlow data and store it to a database. It has a plugin interface, which makes it flexible for fitting in particular tasks.

DEMARC

(commercial) DEMARC is an all-inclusive network monitoring program that allows you to monitor an entire network of servers from one powerful web interface.

dim_STAT

dim_STAT is a performance analysis and monitoring tool for Solaris and Linux (as well all other UNIX) systems. Its main features are a Web based interface, data storage in a SQL database, several data views, interactive (Java) or static (PNG) graphs, real-time monitoring, multi-host monitoring, post analyzing, statistics integration, professional reporting with automated features, and more.

Driftnet

Inspired by EtherPEG, Driftnet is a program which listens to network traffic and picks out images from TCP streams it observes. It is interesting to run it on a host which sees a lot of web traffic.

Echelog

a distributed system consisting of one or more agents and one or more servers. Agents, distributed on computers over network, are monitoring the network's and hosts' state. Gained data are sent to a special server or servers in order to store them

Egglog

Egglog generates statistics based on public lines, actions and user channel joins.

EPAN

a protocol analyzer for ethernet networks. The program allows you to display the received frames either in an overview mode or in a frame detail mode

esniff

esniff counts net packets & writes info in berkeley db. very simple.

Etherape

EtherApe is a graphical network monitor for Unix modeled after etherman. Featuring link layer, ip and TCP modes, it displays network activity graphically. Hosts and links change in size with traffic. Color coded protocols display. It supports Ethernet, FDDI, Token Ring, ISDN, PPP and SLIP devices. It can filter traffic to be shown, and can read traffic from a file as well as live from the network.

Ethereal Network Analyzer

a utility that lets you capture and analyze network traffic.

EthStatus

EthStatus is a simple, easy to use program for displaying commonly needed / wanted statistics in real time about ingoing and outgoing traffic that is usually hard to find, with a simple, efficient interface.

Fairly Fast Packet Filter

The Fairly Fast Packet Filter (FFPF) is a network monitoring framework for Linux. FFPF is designed for high speed by pushing computationally intensive tasks to the kernel or even network processors and by minimising packet copying. It exports to libpcap.

Flow Loader And Virtual Information Output

Flow Loader And Virtual Information Output is a netflow collector data grapher. It gets data from netflow collector, loads it into a MySQL database and gets it back to graph daily, weekly, monthly and yearly charts. It shows traffic splitted by ports, as well as total statistics, and generates percentile 95 information suitable for billing in burstable services.

flowprobe

a libpcap-based tool that collect network traffic data and emit it as NetFlow flows towards the specified collector

Forgate

Forgate allows you to capture traffic from a third party in a switched environment at the expense of a slight increase in latency to that third party host. Utilizing ARP cache poisoning, packet capture and packet reconstruction techniques, Forgate works with nearly all TCP, ICMP and UDP IPv4 traffic flows.

Fritz!Control

This tool allows you to monitor your FRITZ!Box devices, provided they export their signal data in the /proc filesystem under /proc/avalanche. It will provide you with a history so you can see how high a carrier got since you started monitoring. It also colors the bars relative to the delta to the maximum value so you can easily spot where carriers are not stable. The tool has a built in cursor functionality, so you can move over any carrier with your mouse and it will show the exact value in the status bar.

Ganglia Cluster Toolkit

a massively scalable cluster monitoring and execution environment

GFI Network Server Monitor

(commercial) a monitoring tool that allows administrators to monitor the network for failures or irregularities automatically. With GFI Network Server Monitor, you can identify issues and fix unexpected conditions before your users (or managers) report them to you

Gkrellfah2

Gkrellfah2 (gfah) is a local monitor and interface for the Linux Folding@Home client packaged as a plugin for GkrellM. Also available is a client/server version for monitoring remote machines using GkrellMD. gfah collects status information on active work units for display and records info on completed work units in a local log file.

GNMS

GNMS is a free Network Management System, a tool to monitor state of network elements. All nodes are mapped on a window. States can be discovered by service, SNMP, and custom pooling, and syslog and SNMP traps can be caught.

Gnome Network Monitor

Gnome Network Monitor is a network monitor for the GNOME desktop. It includes an overview of processes communicating on the network (similar to top for CPU load), network interface statistics, network statistics overview, and an iptables log analyzer.

Grafist

a bandwidth utilization viewer. It gets the bandwidth utilization information for eth0 interface from "/proc/net/dev" file in 15 seconds periods, and stores it in four data files (daily, weekly, monthly, and yearly)

GTKNetTraf

GTKNetTraf is a GTK2 client for the NetTraf remote network monitor. It is designed to have a prettier and more user friendly interface than the existing Tk client, as well as providing additional features, such as the ability to monitor multiple machines simultaneously.

hardscan

Hardscan is a local netstat replacement that scans for open ports the hard way: by binding to each of them and attempting to handshake with itself. It is meant to be useful in a situation where you may have been rooted, rendering the output of netstat and other security tools untrustworthy.

High Availability Port Monitor

High Availability Port Monitor (HAPM) is a local port status check. It is a simple, light and fast daemon to check TCP/UDP ports. If one or more monitored ports (per IP) downs then the Heartbeat will be killed by HAPM.

Hobbit Monitor

a system for monitoring of hosts and networks, inspired by the Big Brother system. It provides real-time monitoring, an easy web-interface, historical data, availability reports and performance graphs

httperf

httperf is a tool for measuring web server performance. It provides a flexible facility for generating various HTTP workloads and for measuring server performance. The focus of httperf is not on implementing one particular benchmark but on providing a robust, high-performance tool that facilitates the construction of both micro and macro-level benchmarks.

iam

iptables accounting monster (iam) is a traffic reporting tool for iptables. Currently it can generate daily reports in plain text and HTML format, or summaries of these daily reports for a complete month or year.

ibmonitor

an interactive linux console application which shows bandwidth consumed and total data transferred on all interfaces

ICMPush

ICMPush is a tool that send ICMP packets fully customized from command line. This release supports the ICMP error types Unreach, Parameter Problem, Redirect and Source Quench and the ICMP information types Timestamp, Address Mask Request, Information Request, Router Solicitation, Router Advertisement and Echo Request. Also supports ip-spoofing, broadcasting and other useful features. It's really a powerful program for testing and debugging TCP/IP stacks and networks.

icpld

icpld is a tool which allows you to keep track of your network connection perfomance. It will log each occasion of broken networking. It runs as a background process, and sends ICMP requests to an ip of your choice.

ifGraph

ifGraph is a set of perl scripts that were created to fetch data from SNMP agents and feed a RRD file (Round Robin Database) so that graphics can be created later. The graphics and the databases are created using a tool called RRDTool.

ifmonitor

ifmonitor is a network interface traffic logger and grapher.

ifstatus

IFStatus was developed for Linux users that are usually in console mode. It is a simple, easy to use program for displaying commonly needed / wanted statistics in real time about ingoing and outgoing traffic of multiple network interfaces that is usually hard to find, with a simple and effecient view. It is an alternativle to the PPPStatus and EthStatus projects.

iftop

does for network usage what top(1) does for CPU usage. It listens to network traffic on a named interface and displays a table of current bandwidth usage by pairs of hosts

IOG

a network I/O byte grapher made to graph cumulative kB/MB/GB totals for hours/days and months

IP Bandwidth Watchdog

a pcap based IP traffic monitor. It tallies per-subnet traffic and bandwidth usage and starts detailed logging if specified threshold for the specific subnet is exceeded

IP Flow Meter

a bandwidth analysis tool, that measures how much bandwidth specified hosts use on their Internet link

IPAUDIT

IPAUDIT listens to a network device in promiscuous mode, and records of every 'connection', each conversation between two ip addresses. A unique connection is determined by the ip addresses of the two machines, the protocol used between them and the port numbers (if they are communicating via udp or tcp).

iplog

a TCP/IP traffic logger. Currently, it is capable of logging TCP, UDP and ICMP traffic, though adding support for other protocols should be relatively easy. iplog contains a built-in packet filter, allowing for logging or excluding packets that fit a given set of criteria

iplogled

a logger for IP packets via keyboard LEDs. It logs ICMP, UDP, and TCP connections

ipmap

Ipmap is an IP address grapher, inspired by an xkcd comic and glTail. It reads data from standard input and maps IP/size pairs on a map. You could run this unmaintained on some display in your NOC to visualize network traffic as an eye-catcher.

IPTraf

a Linux-based network monitor and statistics generator for IP LANs

IPWatch

IPWatch is a Linux shell script that will monitor your network connection and take corrective action when several problems happen.

isdnMonitor

isdnMonitor saves call information (number, name, connection, and duration) in a MySQL database, does inverse searches for German phone numbers, enables notifying clients via the Windows/SMB messaging service, and displays caller names on an LCD display via LCDproc.

Isdnserver

monitors the isdnctrl device from the isdn4linux package, as of today it's capabilities are limited, it will just send all the relevant data to the clients

jail

a simple, but often useful network security tool which displays ICMP packets and attempted TCP connections from remote hosts

jMon

jMon creates a TCP/IP connection to the jmond daemon running on each of the hosts that are to be monitored. The client displays CPU, memory and swap usage on the host machines. The amount of resources consumed is displayed as a horizontal bar, ranging between 0% and 100%. Where the terminal is capable of colour, a load between 0% and 33% is indicated in green, 33% to 66% in yellow, and 66%+ in red. With a long list of hosts on display, it is possible to scroll through the list using the cursor keys, or simply resize the window in X.

jnettop

jnettop is a network traffic visualiser. Nettop captures traffic comming across the host it is running on and displays streams sorted by bandwidth they use. Result is a nice listing of communication on network by host and port, how many bytes did this communication transport and the bandwidth it is consuming.

KBMon

a bandwidth-monitor for local network devices. On three different panels you can watch the speed of the transfered and the received data, and you can see the speed of the total data on the choosen interface

kimon

a simple ISDN monitor that attaches itself into the KDE taskbar. It displays the status of all connected ISDN devices that are known to ISDN4Linux

Knetdump

a net-tool for analysing and visualizing basic protocols of the OSI layer 1-4 (KDE)

KWaveControl

a monitoring tool for WaveLAN devices. It shows information such as the link quality and bit rate

KWebWatch

a small utility designed to monitor urls, checking for changes. It docks into the KDE 2.0 panel and can also be used as a launching pad for viewing urls in your favorite browser

Lestat

a simple, portable and stable system for viewing connection attempts and attacks against GNU/Linux and Unix machines

Limph

Limph (Limph Is Monitoring Pingable Hosts) provides both UPD and TCP port checks of grouped network hosts with email notification. Limph is completely configurable through its Web interface.

Linksys Monitor

a Posix compliant application, used to monitor and react to device activity of Cisco Linksys devices

linksysmon

a tool for monitoring Linksys BEFSR41 and BEFSR11 firewalls under Linux and other Unix-like operating systems

ltraf

a utility to list traffic flowing through a computer's network interface

lvs-rrd

lvs-rrd is a couple of scripts to collect connection data from an LVS, store them in RRD files and later graph that data so that trends can be observed.

Mbrowse

Mbrowse is an SNMP MIB browser based on GTK and net-snmp.

mirmon

quietly probes a subset of the sites in a given list, writes the results in the 'state' file and generates a web page with the results. The subset contains the sites that are new, bad and/or not probed for a specified time

Monesa

Monesa is a simple script for monitoring hosts trough the ICMP protocol.

MoNetAny

a general monitor applet for the gnome panel

MonitorIT!

a general-purpose multi-environment network monitor

MONTSUQI

MONTSUQI is a small transaction monitor for Unix-like systems. It provides online processing like a mainframe, but features a more powerful user interface. It supports programming in C, COBOL, and Ruby. It has a clustering feature for heavy loads, and manages database replication.

MoSSHe

MoSSHe (MOnitoring with SSH Environment) is a simple, a simple, lightweight (both in size and system requirements) server monitoring package designed for secure and in-depth monitoring (typically around a dozen checks per system) of a handful of remote systems, typically internet servers or similar

MRTA

a complete package for network traffic accounting across the multiple routers and clients

mrtg

The Multi Router Traffic Grapher (MRTG) is a tool to monitor the traffic load on network-links. MRTG generates HTML pages containing graphical images which provide a LIVE visual representation of this traffic. Check http://www.ee.ethz.ch/stats/mrtg/ for an example. MRTG is based on Perl and C and works under UNIX and Windows NT.

mrtg-mica-probe

monitors the number of used analogue and ISDN lines of a ITK NetBlazer 6100 (aka Telebit MicaBlazer)

mrtg-misc-probe

monitors miscellaneous system parameters, like percentage of used disk space and inodes, sendmail statistics, latency (ntp delay), clearcase number of views and vobs, target reachability (ping'able), etc

mrtg-ntap-probe

monitors a Network Appliance NetCache web proxy server appliance or a server running the NetCache Proxy Server Software

mrtg-ping-probe

monitors round trip time to another host

mrtg-select

mrtg-select allows the flexible display of MRTG graphs, chosen by keyword and time span. Keywords are automagically detected by looking at the graphs generated by MRTG, which means there is no configuration file to update: just point the script at the directory with the graphs.

mtr

mtr combines the functionality of the 'traceroute' and 'ping' programs in a single network diagnostic tool. Read more

Murty's X Watcher

Murty's X Watcher processes web server / proxy server access logs and generates a report on a web page providing details of hits to X Rated web sites.

NAT Monitor

a tool to monitor internet hosts` bandwidth usage in a Linux-NAT network. A daemon collects data and clients display them (currently a GTK apps with a graph, a console version and a Win32 frontend). It detects new hosts and has a nice summary statistic

NatStat

NatStat is a network monitoring tool designed to help paranoid users and network administrators that want to monitor their iptables settings live. The power of NatStat is that it can monitor iptables-rules.

NCTOP

a remote system monitor for unix hosts. It is a client/server-application using UDP-packets to receive the information of the hosts running the daemon and listed in the clients configuration file

NDSAD Traffic Collector

NDSAD is a software package for translating captured traffic data into the NetFlow v.5 format.

nefu

monitors network services and reports outages. Working from a discription of the network topography, nefu's algorithm prevents "false alarms" in the event of a network outage due to a dependency failure

nepim

Network pipemeter: a tool for measuring available bandwidth between hosts. nepim is also useful to generate network traffic for testing purposes.

net-check

a pair of simple perl scripts that will monitor and report on your internet connectivity

NET/FSE

(commercial) Net/FSE, Packet Analytics' network data search engine, puts the power of real time searches over terabytes of NetFlow data in the hands of security analysts. The network data search engine dramatically reduces exposure to significant business risk by enabling security specialists to quickly and definitely determine the full scope of a network security alert. Net/FSE empowers network security professionals to collect and concentrate enterprise-wide network data, particularly NetFlow data into a comprehensive, accessible form critical for network security analysis.

Netics

an extensible network statistics collector. it puts the network interface in promiscuous mode and feeds the data stream (after it strips off the appropriate protocol headers), it then displays the results at speficied intervals, either in a "progress bar" mode or as raw statistics

netlcdclient

a client for LCDproc. It shows network statistics from any interface listed in /proc/net/dev and will work well with 20x4 LCD displays

netload

a GNOME network load monitoring applet

Netlogger

Netlogger is a set of tools to send and receive generic information using UDP, with support for broadcast transmission. Some of the tools are scripts that rely on Ettcl and some are C programs.

NetMate

a flexible and extensible network measurement tool (meter). It can be used for accounting, delay/loss measurement, packet capturing and much more. The main advantage over other existing tools is that it can be easily extended due to its modular (class-based) structure and dynamic loadable packet processing and information export modules

NetMon

a network-wide process monitor (kind of "top for networks") using GTK widgets

netmon_applet

a simple textual network load monitor for the GNOME panel

netmonitor

A simple console based utility for monitoring data bandwidth and data totals. Has logging so data totals are not cleared on computer restart.

NetMRG

a tool for network monitoring, reporting, and graphing. Based on RRDTOOL, the best of open source graphing systems, NetMRG is capable of creating graphs of any parameter of your network

Netpeep

a network monitoring tool that represents network information via audio output

NetPlug

an extensible multi-connections, multi-protocol, network client program, written in pure Tcl/Tk

NetRadar

an application that shows you the health your internet connection through a map of your part of the Internet

NeTraMet

NeTraMet is a network accounting meter. It builds up packet and byte counts for traffic flows, which are defined by their end-point addresses.

NetSaint

monitors hosts and services on your network. It has the ability to email or page you when a problem arises and when a problem is resolved. NetSaint is written in C

Netsaint Console monitor

Netsaint Console monitor is a curses-based console monitor for Netsaint. It allows you to monitor Netsaint services without the expense or availability of a GUI.

netspeed_applet

netspeed_applet is a little applet that shows how much traffic occurs on a specified network device.

nettest

monitors a networks connection, and takes some action if/when the connection goes down.

netupsd

an application to remotely monitor a UPS (usually via SNMP) and take one or more specified actions if a condition is met

Netwatch

a dynamic program which displays the Ethernet status based each the connection's activity. It has the capability of monitoring hundreds of site statistics simultaneously

Network Equipment Performance Monitor

(commercial) a very general, highly configurable, two part software system that captures and analyzes logged performance data from IP networked equipment and reports it via e-mail and web pages

Network-I

Network-I is a network analyzer, comprising a fast sniffer with a powerful filtering language and a suite of tools to process the captured packets. The possibilities range from the straightforward display of packet fields in exhaustive detail (or in a one-line summary) to measurement of traffic rates (which can be recorded to file or displayed in real-time via the GUI) and automated reports on packet retransmissions and losses.

NetworkControl

NetworkControl is a utility that allows you to control and monitor your network interfaces, including wireless ones. NetworkControl also provides the connection IP, configuration and statistics (gleaned from "ifconfig" and updated each second), and provides graphic signal levels for wireless interfaces, handy for evaluating a system of wireless devices.

NetXMS

NetXMS is a new and rapidly developing monitoring system, released under GPL2 license. It can be used for monitoring entire IT infrastructure, starting with SNMP-capable hardware (like switches and routers) and ending with applications on your servers.

nfcount

a tool for counting network traffic by using rules. Rule can be defined by source or destenation IP address, timeranges. Accounting result may be simple counter or histogram

nfswatch

lets you monitor NFS requests to any given machine, or the entire local network. It mostly monitors NFS client traffic (NFS requests); it also monitors the NFS reply traffic from a server in order to measure the response time for each RPC

NINO Is Not Openview

a network management solution to monitor your network, systems and applications: integrated, one tool for all. Features: SNMP, WMI, Response time performance monitoring, graphs with zoom, 3D topology view, events, reporting using HTML templates.

nmaplr

a nmap log reporting tool which will print out a text format report of a nmap log in the XML format (by using the -oX option)

NOCOL/SNIPS

a system and network monitoring software that runs on Unix systems and can poll network and system devices. It is capable of monitoringnameservers, web ports, host performance, syslogs, radius servers, BGP peers, etc. New monitors can be added easily (via a C or Perl API)

NodeBrain

an interpreter of a declarative rule-based language designed for construction of state and event monitoring applications. For the purpose of constructing event streams and performing rule administration, it supports authenticated and encrypted peer-to-peer communication over TCP/IP, including encrypted file transfers, store-and-forward message queues, and remote command execution

NodeWatch

an open source TCP/IP network monitoring tool written in Perl for UNIX

Nomad

Network Map Divination: a network mapping program designed to automatically discover a local network, using SNMP to identify network devices and work out how they are physically connected together

nPULSE

a web-based network monitoring package for Unix-like operating systems. It can quickly monitor tens, hundreds, even thousands of sites/devices at a time on multiple ports

ntop

ntop is a Unix tool that shows the network usage, similar to what the popular top Unix command does. ntop is based on libpcap. Read more

Nuhe

Nuhe is a rule based log monitoring system, which is capable of action when rules are matched againsts log(s) activity. Default Nuhe mode is to run on background (daemon), but it can also be used in foreground and log analyzer mode. Log analyzer mode just analyzes given logs and prints results to stdout; no action is taken when Nuhe is in analyzer mode.

nwload

a graphical traffic monitor that is similar to gkrellm or xisdnload but offers additional operation parameters and display formatting options

Opt-X

primarily a network monitoring tool for content/urls and network services, but it also has some other functions such as, task list, server list, log changes for servers and a vendor list

Packit

Packit (Packet toolkit) is a network auditing tool. Its value is derived from its ability to customize, inject, monitor, and manipulate IP traffic. By allowing you to define (spoof) nearly all TCP, UDP, ICMP, IP, ARP, RARP, and Ethernet header options, Packit can be useful in testing firewalls, intrusion detection/prevention systems, port scanning, simulating network traffic, and general TCP/IP auditing. Packit is also an excellent tool for learning TCP/IP.

PACT

a software package to do complete port accounting for SNMP-manageable devices like routers, hubs, and switches

Pads

Passive Asset Detection System: a signature based detection engine used to passively detect network assets. It is designed to complement IDS technology by providing context to IDS alerts

PagePoker

PagePoker is a perl package / class file that defines a browser agent with many powerful features for monitoring and testing websites, including elaborate failure handling that can send email and trigger snmp traps.

Pandora

Pandora is a flexible monitoring platform. Pandora addresses current needs for improving Internet middleware and infrastructure by providing both in-depth understanding of network usage and metrics to compare existing protocols. Pandora is flexible and easy to use and deploy.

PaquitoMeter

PaquitoMeter is a small program that shows you statistics about your network transfers. You can choose between interfaces installed in your system, your language and the maximum speed your connection supports.

PasTmon

an Open Source passive network application response time monitor utilising packet capture (via libpcap), tracking sessions maintaining transaction state and collecting metrics of server/network response times, segment size negotiation and TCP window size advertisements

pcap2mysql

pcap2mysql is a network decoder and file exporter which reads pcap files or sniffs traffic and stores data in a MySQL database. It supports Ethernet, ARP, STP, IP, TCP, UDP, and ICMP. The application-layer protocols it supports are BitTorrent, DNS, FTP, HTTP, IRC, Mail, MSN, palltalk, POP3, SIP, SMTP, and SSH.

pcapsipdump

pcapsipdump is a tool for dumping (recording) SIP sessions (and RTP traffic, if available) to disk in a fashion similar to "tcpdump -w" (the format is exactly the same). The difference is that the data is saved with one file per SIP session. Even if there are thousands of concurrect SIP sessions, each goes to separate file.

penemo

penemo is a network/server monitoring app. It's design allows simple ping/http checks, SNMP polls, as well as customized checks. When an error is detected, alerts can be sent via. email, or custom scripts can be executed.

PIX Logging Architecture

The PIX Logging Architecture [PLA] is a free and open-source project allowing for correlation of Cisco PIX Firewall Traffic and IDS Logs. PIX Log message parsing is performed through the use of the PLA parsing module or PLA Msyslogd module.

pmr

pmr is a command line filter that displays the data bandwidth and total number of bytes passing through a pipe.

pNRG

pNRG is a package for maintaining and visualizing network data, particularly suited for historical trend analysis of network resources. pNRG doesn't need any explicit configuration and is able to auto-discover, mantain and graph new resources (either IPv4/IPv6 end hosts, network segments, MAC addresses, Autonomous Systems, etc.) as soon as they produce a traffic footprint.

pppd-logger

pppd-logger is software to log pppd connections in a MySQL database and browse it via a GUI. It can calculate costs based on traffic price and time price.

pppoem

monitors the DSL connection of a Linux kernel 2.4.4 by reading the files /proc/net/pppoe and /proc/net/dev

PPPstatus

a simple, easy to use program for displaying commonly needed / wanted statistics in real time about ingoing and outgoing TCP/IP traffic

PSI

PHP Simple Informer: a very simple network services monitoring application written in PHP

qmailmrtg7

uses the excellent and extensive qmail logging information to provide mrtg graphing

qmrtg

Qmrtg is a free tool to help monitoring the activity of a qmail mailserver. It's intended to be used with MRTG. Qmrtg is modular. Each module carries out a different log analysis. A super-module lets the user easily request any analysis without to know anything about the modules themselves.

Qt Network Monitor

Qt Network Monitor is a KISS network monitor thatshows how much bandwidth you are using on a daily basis.

Quick Look

Quick Look is a package to collect system statistics and output pretty graphics and (X)HTML pages. It allows system administrators to have a quick look on the status of their systems, without going for a more advanced (and heavier) solution.

Radar

a real-time, interactive graphical tool for monitoring Radiator Radius servers. It features monitoring of multiple remote Radiators, graphing, statistics, error and event logging, log viewing, radiator configuration viewing and modification, and alerts for significant events

RAIDmon2

RAIDmon2 is a simple perl-script for linux to monitor DELL's PERC/4 RAID-controller with SNMP. It uses a GTK-window or STDOUT as output. Requires Perl, GTK, snmpd und the PERC-MIB.

raidmonitor

monitors your linux raid devices (/proc/mdstat). It can send you a mail when something goes wrong, or show the current status in a window

rrd-snort

rrd-snort is a script that creates a graph from alerts/events stored in a Snort database in order to see distribution of "top n" attack methods.

RSP

(commercial) combines real-time monitoring with post-time analysis. Includes a number of prebuilt modules for things like CPU and memory usage, network activitity, disk usage, and more. Also includes an API for custom modules

RUDE

RUDE stands for Real-time UDP Data Emitter and CRUDE for Collector for RUDE. RUDE is a small and flexible program that generates traffic to the network, which can be received and logged on the other side of the network with the CRUDE. Currently these programs can generate and measure only UDP traffic.

SASacct

an accounting package, used for monitoring traffic on a TCP/IP network through the internal OS specific kernel counters

scanssh

scans a list of addresses and networks for running SSH protocol servers and their version numbers. scanssh protocol scanner supports random selection of IP addresses from large network ranges and is useful for gathering statistics on the deployment of SSH protocol servers

Scotty

Scotty allows you to implement site specific network management software using high-level, string-based APIs. The software is based on the Tool Command Language which simplifies the development of portable network management scripts.

Seagull

Seagull is a multi-protocol traffic generator. Especially targeted towards IMS, Seagull supports Diameter (RFC3588 and all applications) over TCP/SCTP and IPv4/IPv6 , TCAP (over SS7 or Sigtran), XCAP over HTTP and Radius.

sentinel3G

a smart, simple monitoring tool for Linux, Unix and Windows NT/2000 systems. It intelligently monitors and manages operating systems, SNMP enabled devices, internet services, databases and applications

serialdump

serialdump works with a special piece of cabling in order to allow users to non-intrusively monitor an RS-232 interface using a Unix box with 2 serial ports.

serialmon

allows the monitoring of data transfer rates on a serial line

SerLooK

a tool aimed to inspect and debug serial line data traffic developed in a Linux+KDE environment. It can work as a classic point-to-point serial terminal mode or as a line snooper , monitoring the data exchanged between two hosts (needs a PCs equipped with at least two serial ports and a derived cable)

ShowEQ

a packet analyzer for the game Everquest

SICM

Simple Infrastructure Capacity Monitor is a tool to monitor, graph and alert the capacity of computing devices and applications. SICM runs on a Windows or Linux device on your network, 24 hours every day, constantly recording the capacity parameters of any networked device using snmp, ping or custom modules. The recorded data is stored for later reference via a user friendly menu-driven web browser. E-mail alerts are raised if a user determined number of queries fail. (GPL license)

sinfo

a monitoring tool for networked computers

Skipole Network Monitor

SkipoleMonitor is a network monitor which allows the user to input host IP addresses, it then pings these hosts every five minutes and displays their status via a built-in web server, on port 8000.

SMELT

Simple Monitoring Evaluating and Logging Tool: a tool created to monitor the disks in a single host or an entire network

SMTP Relay Checker

an SMTP open relay checker. Supports scanning of ip blocks and can output results to a webpage

SNARLsnmp

SNARLsnmp is a monitoring tool for dynamic web applications. SNARLSNMP dynamically creates and assembles URLs and scans them at arbitrary intervals, performs predefined checks on URL content, size and timing, notifies a monitoring application via traps if a predefined error condition (event) has been met and delivers a snapshot of its current tests and result at any given time.

SNMP Browser for KDE

SNMP Browser for KDE displays data from SNMP devices. It uses Net-SNMP library.

SNMP Monitor

a graphical SNMP monitoring tool designed mainly for WAN surveillance. It allows the user to view the states of network trunks, routers and any other SNMP-able equipment

snmpmon

a simple program that monitors bandwidth usage on a periodic basis and sends a SNMPv2 TRAP when the data rate exceeds a certain value

SNMPMonitor

a tool to monitor SNMP devices. It is based on Qt and on the Net-SNMP library. It reads from devices like routers, printers or a snmp-deamon, and displays received data graphically

snmpwatch

to remotely watch via SNMP the size and the memory used by each process. Snmpwatch will warn you if a process exceeds its `quota' of CPU or memory, theses limits are based on process and host name

sntop

sntop is an ncurses-based top-esque console utility for monitoring the connectivity of network hosts, supporting various advanced features and released under the GPL.

sockmon

a socket monitor of sorts. It has a small general network server and client; it is built on top of the csc library

softflowd

software implementation of Cisco's NetFlow traffic reporting system. It operates by listening (via libpcap) on a promiscuous interface and tracking traffic flows. This information is useful for network accounting, intrusion detection and forensics

Speedometer

Speedometer measures and displays the rate of data across a network connection or data being stored in a file.

Spotlight

(commercial) Spotlight, the real-time diagnostics and resolution tool from Quest Software, enables administrators to anticipate and correct availability and performance issues prior to a negative impact on business processes

Spumoni

provides an open framework for monitoring applications using SNMP. Specifically, it enables any program which can be queried via local commands to be health-checked by OpenNMS, Tivoli, OpenView, MRTG, RRDTool and many others

SrvReport

SrvReport is a simple and featureful server monitoring and reporting system. It will send every day a mail with the latest state of the server including traffic, cpu, mail, http, ftp reports and other logs. It can be easily configured.

State

State is a suite of tools for monitoring a network of machines. You tell State how your network looks and should behave, and State warns you when things start to deviate from that rhythm. Many different aspects of a network can be monitored, from disk space and load average to machine connectivity and service availability.

Sysload

(commercial) monitors Linux, all UNIX flavors, Windows, NetWare, AS/400, databases (Oracle, SQL Server, DB2, Informix, Sybase) and applications (SAP R/3, Oracle Apps, Exchange, Terminal Server, IIS, custom apps, etc.) across heterogeneous platforms. Simple and intuitive to use

Sysmon

a network monitoring tool designed to provide high performance and accurate network monitoring. Currently supported protocols include SMTP, IMAP, HTTP, TCP, UDP, NNTP, and PING tests

SysOrb Network Monitoring System

performs multi-platform active, passive and SNMP-based monitoring of networked servers, devices and processes/services. SysOrb contains a built-in data repositor for holding more than 4 years of high-resolution data

TCPWatch

TCPWatch is a utility written in Python that lets you monitor forwarded TCP connections or HTTP proxy connections. It displays the sessions in a window with a history of past connections. It is useful for developing and debugging protocol implementations and web services.

The Eye Of Horus

The Eye Of Horus is a monitoring and alerting tool for computers. It's mainly useful for monitoring network services (eg, HTTP or SMTP servers) and the internal status of Unix servers (eg, load, disk usage, process counts).

Thoth Network Integrity Assurance

an open-source distributed network monitoring system

Thumper

Thumper is a file monitor that highlights services and keywords dependant on its configuration file. Its purpose is to notify the user when an attack is underway.

TorApplet

TorApplet is a simple GNOME applet for managing and monitoring the basic activities of the Tor daemon. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet.

Traffic tool Troll

Traffic tool Troll is a traffic monitoring and managing skript. Traffic statistics are generated by port, hour, day, month, and year.

tRaFFiToR

a traffic monitor and analyzer for small and medium-sized Web sites. It uses flat files and doesn't use an SQL database

TrafIP

a small solution(3 files) for monitoring your traffic and bandwith

UCD-SNMP

Various tools relating to the Simple Network Management Protocol including: An extensible agent, An SNMP library, tools to request or set information from SNMP agents, tools to generate and handle SNMP traps, a version of the unix 'netstat' command using SNMP & a Tk/perl mib browser

ulog-monitor

ulog-monitor is a console program written in ruby which shows logged packets by the program ulogd.

upnp2mrtg

upnp2mrtg is a add-on for the mrtg (Multi Router Traffic Grapher). upnp2mrtg is a command line tool written in shell to gather statistics from an upnp enabled FritzBox DSL router.

urluminator

designed to capture and log URLs that cross the network