logfiles that are generated by the famous MRTG (Multi Router Traffic
Grapher) tool.
WWW: http://search.cpan.org/dist/MRTG-Parse/
PR: ports/125879
Submitted by: gslin <gslin at host-1.pixnet.tw>
snmp4nagios home page:
SNMP4Nagios is a package of Nagios plugins which use SNMP
to query hosts. While some of the plugins use standard MIBs,
most are designed for vendor specific agents.
Unlike other Nagios plugins, they are able to scan hosts for
objects which can be monitored. They also can keep performance
logs and draw plots of these using Tobias Oetiker's RRDTool.
Currently devices by Brocade, Cisco, Compaq/HP and Network Appliance
as well as computers running Microsoft Windows or Net-SNMP
and uninterruptable power supplies are supported.
WWW: http://snmp4nagios.sourceforge.net/
PR: ports/124954
Submitted by: Ryan Steinmetz
2008-04-07 net-mgmt/ap-utils: Does not work with gcc4.2; appears to be abandoned
2008-03-31 multimedia/xfce4-xmms-controller-plugin: Project is dead
2008-05-15 www/pear-HTTP_Session: Use www/pear-HTTP_Session2 instead
2008-05-04 security/bioapitool: All functionallity of this tools has been merged with pam_bsdbioapi
- Add appropriate CONFLICTS, NO_LATEST_LINK.
- Upgrade net-mgmt/net-snmp to 5.4.1 [1].
PR: ports/110969 [1]
Submitted by: valerio.daelli@gmail.com [1]
This upgrade (5.3.x -> 5.4.1) includes various changes in original
sources.
If you find something strange (or missing/incorrect MIB values) than
5.3.x, please let me know. And you can choose net-mgmt/net-snmp53
port for old 5.3.x version.
cpu utilization and other system statistics.
It implements parts of UCD-SNMP-MIB for this. It is also possible to specify
your own commands under UCD-SNMP-MIB::extTable mib.
PR: ports/120238
Submitted by: Mikolaj Golub <to.my.trociny (at) gmail.com>
2007-12-01 www/xpi-surfkeys: Development has been ceased
2008-02-01 sysutils/eventwatcher: no active development
2007-10-27 sysutils/p5-UPS-Nut: Version branch long since retired
2007-10-31 net-mgmt/netsaint: Now developed as Nagios, see net-mgmt/nagios port
2007-10-31 net-mgmt/netsaint-plugins: Now developed as Nagios, see net-mgmt/nagios port
2008-01-22 benchmarks/tsung: "fails to install"
2007-10-03 games/ggo: developer's focus have moved elsewhere
2008-02-15 mail/claws-mail-etpan_privacy: no longer supported by developers
systems. It first helps you to install, configure and use Tor. It then
reduces the task of anonymizing most applications to a single-click, including
Firefox, Opera, Konqueror, Pidgin, Kopete, SSH, and IRC.For advanced users
TorK provides detailed network information, and more, in an accessible manner.
WWW: http://www.anonymityanywhere.com/tork/
Submitted by: Beat Gätzi <beat at chruetertee.ch>
Net::Telnet::Cisco module and provides an easy way to manage and
monitor Cisco IOS devices. I'll mention this a lot,
but make sure you read up on Net::Telnet::Cisco for a lot of information.
WWW: http://search.cpan.org/dist/Net-Telnet-Cisco-IOS/
PR: ports/120349
Submitted by: Tsung-Han Yeh <snowfly at yunteche.du.tw>
of inspiration from the Big Brother monitor, but unlike Big Brother it is
designed to work well whether you need to monitor small network with just
a handful of hosts, or large networks with thousands of hosts.
Hobbit is the successor to the bbgen toolkit, which has been available as
an add-on to Big Brother since late 2002. The name change was decided upon
when Hobbit acquired enough functionality to be a stand-alone product.
The tools that formed the bbgen toolkit are still present in Hobbit
and are quite important for it, so if you have used bbgen before,
Hobbit will seem quite familiar.
This is the server.
WWW: http://hobbitmon.sourceforge.net/
of inspiration from the Big Brother monitor, but unlike Big Brother it is
designed to work well whether you need to monitor small network with just
a handful of hosts, or large networks with thousands of hosts.
Hobbit is the successor to the bbgen toolkit, which has been available as
an add-on to Big Brother since late 2002. The name change was decided upon
when Hobbit acquired enough functionality to be a stand-alone product.
The tools that formed the bbgen toolkit are still present in Hobbit
and are quite important for it, so if you have used bbgen before,
Hobbit will seem quite familiar.
This is the client.
WWW: http://hobbitmon.sourceforge.net/
untainting easier and more readable.
All functions return an untainted value if the test passes, and undef if it
fails. This means that you should always check for a defined status
explicitly. Don't assume the return will be true. (e.g. is_username('0'))
The value to test is always the first (and often only) argument.
WWW: http://search.cpan.org/dist/Data-Validate-IP/
PR: ports/119264
Submitted by: Tuc <freebsd-ports at t-b-o-h.net>
to help a network or system administrator keep track of the computers
configuration and software that are installed on the network
WWW: http://www.ocsinventory-ng.org/
PR: ports/116756
Approved by: stas (mentor)
system & network statistics along with updating output RRD or CSV files.
The daemon is very fast and allows for frequent polling of values, with
support for polling as frequent as every 10 seconds.
WWW: http://www.collectd.org/
PR: ports/116736
Submitted by: Matt Peterson <matt at peterson.org>
DoCoMo's Open Source SEND project provides an implementation of
RFC3971 Secure Neighbor Discovery (SEND). SEND cryptographically
secures the IPv6 neighbor discovery protocol, countering the threats
discussed in RFC3756 (IPv6 Neighbor Discovery (ND) Trust Models and
Threats).
DoCoMo's SEND is implemented completely in user space, so it is
portable and lends itself to experimentation. It currently runs on
Linux (tested on 2.6 kernels) and FreeBSD (tested on 5.4).
Also included in the distribution are implementations of RFC3972
Cryptographically Generated Addresses (CGAs) and RFC3779 X.509
Extensions for IP Addresses and AS Identifiers.
WWW: http://www.docomolabs-usa.com/lab_osrc_guide.html
Doesn't work on FreeBSD > 6.x though. Hopefully the submitter will
submit patches for it now it is commited.
PR: ports/116540
Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu>
2007-08-22 www/mapedit: Depends on obsolete version of jdk
2007-08-22 www/hotjava: Depends on obsolete version of jdk
2007-08-29 sysutils/cd9660_unicode: is obsolete. See mount_cd9660(8)
2007-09-11 net-mgmt/p5-Net-SNMP3: only runs with old, unsupported Perl versions
NetXMS is new and rapidly developing monitoring system,
released under GPL2 license. It can be used for monitoring
entire IT infrastructure, starting with SNMP-capable hardware
(like switches and routers) and ending with applications
on your servers. NetXMS is an extremely reliable and powerful
monitoring system, enabling you to improve your network
availability and service levels.
WWW: http://www.netxms.org/
PR: ports/114495
Submitted by: samflanker@gmail.com
SNMP++v3.x is a C++ API which supports SNMP v1, v2c, and v3.
SNMP++v3.x is based on SNMP++v2.8 from HP* and extends it
by support for SNMPv3 and a couple of bug fixes.
The v3 support to SNMP++ and AGENT++ is provided by courtesy
of Jochen Katz (katz07@agentpp.com).
SNMP++v3.x extends the original SNMP++v2.8 by the following:
# SNMPv3 including User Security Model (USM) with:
# MD5 and SHA authentication
# DES and IDEA privacy
# Thread-safety
# Bug-fixes
WWW: http://www.agentpp.com/snmp_pp3_x/snmp_pp3_x.html for further details.
PR: ports/112669
Submitted by: Nicolai Petri <nicolai@petri.cc>
to help a network or system administrator keep track of the computers
configuration and software that are installed on the network
WWW: http://www.ocsinventory-ng.org/
PR: ports/115520
Submitted by: Dennis Cabooter
Based on the description of this port, it belongs more in
net-mgmt than in net.
PR: ports/114323
Submitted by: Edwin Groothuis <edwin@freebsd.org>
Approved by: lth@
IEEE standard 802.1AB Link Layer Discovery Protocol. LLDP is an industry
standard protocol designed to supplant proprietary Link-Layer protocols
such as Extreme's EDP (Extreme Discovery Protocol) and CDP (Cisco Discovery
Protocol).
WWW: http://sourceforge.net/projects/openlldp/
PR: ports/113063
Submitted by: Roar Pettersen <roar at uib.no>
Approved by: garga (mentor)
provide an efficient, clean, portable implementation of an SNMP stack for
management applications.
WWW: https://trac.eecs.iu-bremen.de/projects/gsnmp/
PR: ports/113511
Submitted by: Matt Peterson <matt@peterson.org>
IP sniffer and HTML report generator.
Features:
squid log file parser.
sendmail log file parser.
courier log file parser.
bpft(ports/net-mgmt/bpft) log file parser.
Database backends support: MySQL, Firebird.
IP sniffer via pcap library (ports/net/libpcap).
Direct commit changes to database in realtime (no log files).
Traffic static HTML reports generating by date periods.
Traffic dynamic HTML reports generating via CGI (Web interface).
Multithreading architecture.
Portable: BSD os'es and Windows NT family supported, but tested at this time
only under FreeBSD 5.x 6.x amd64 i386 and Windows 2000 XP 2003.
WWW: http://developer.berlios.de/projects/macroscope/
- Dukashvili Guram
white_raven@users.berlios.de
PR: ports/112653
Submitted by: Dukashvili Guram <white_raven at users.berlios.de>
to help a network or system administrator keep track of the computers
configuration and software that are installed on the network
WWW: http://www.ocsinventory-ng.org/
PR: ports/112590
Submitted by: Dennis cabooter<freebsd@rootxs.org>
of the network links of your network. The required data are acquired from
graphs created by the MRTG package and are displayed as two ways colored arrows
on a map representing the logical topology of the network. The resulted image
is presented in a web page using extra DHTML and JavaScript code for web-over
pop-ups, based on the OverLib JavaScript library.
WWW: http://netmon.grnet.gr/weathermap/
Submitted by: Felippe de Meirelles Motta <lippe@freebsdbrasil.com.br>
(via private mail)
2007-03-28 graphics/hobbes-icons-xpm: Archaic port
2007-04-10 japanese/firefox-ja: Incomplete pkg-plist
2007-04-10 japanese/lookup-xemacs: Does not install
2007-04-10 lang/linux-hla: Does not compile
2007-04-10 mail/vmailmgr: Incomplete pkg-plist
2007-04-10 multimedia/qvamps: Touches filesystem prior to 'make install'
2007-03-10 net-mgmt/sting: Broken on all supported versions of FreeBSD
2007-04-10 net-mgmt/tas: Incomplete pkg-plist
2007-04-10 net-p2p/verlihub-plugins: Does not configure, it needs at least verlihub 1.0
2007-04-10 news/inn-stable: Fails to patch
2007-04-10 palm/malsync: Does not build with new pilot-link
2007-04-10 russian/elm.language: Leaves behind files on deinstall
2007-04-10 russian/pine.language: Leaves behind config file on deinstall
2007-04-01 science/py-scipy03: Replaced by py-scipy
2007-04-10 security/php4-cryptopp: Does not compile
Pktstat listens to the network and shows the bandwidth being consumed
by packets of various kinds in realtime. It understands some protocols
(including FTP, HTTP, and X11) and adds a descriptive name next to the
entry.
WWW: http://www.adaptive-enterprises.com.au/~d/software/pktstat/
Author: David Leonard <leonard at users.sourceforge.net>
Adapted from: OpenBSD port
Rancid monitors a router's (or device's) configuration, including software
and hardware (cards, serial numbers, etc), using CVS. Rancid currently
supports Bay routers, Cisco routers, Juniper routers, Catalyst switches,
Foundry switches, Redback NASs, ADC EZT3 muxes, MRTd (and thus likely IRRd),
Alteon switches, HP procurve switches, Hitachi routers.
Rancid logs into each of the devices in a router table file, runs various
commands, chomps the output, and emails any differences ( sample) from
the previous collection to a mail list.
A looking glass is also included with rancid, based on Ed Kern's in use on
http://nitrous.digex.net/. Rancid version has added functions, supports cisco,
juniper, and foundry and uses the login scripts that come with rancid;
so it can use rsh, telnet, or ssh to connect to your router(s).
WWW: http://www.shrubbery.net/rancid/
PR: 110607
Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu>
Repocopy by: marcus
certificate expires. The check is done via an SSL connection (STARTTLS
mechanisms are not supported). The plugin is written in Perl, should work with
the embedded Perl interpreter (not tested though) and requires Net::SSLeay and
Date::Manip to be installed on the Nagios host.
Author: Holger Weiss <holger@CIS.FU-Berlin.DE>
WWW: http://www.jhweiss.de/software/nagios.html
PR: ports/110603
Submitted by: Eric Cronin <ecronin@gizmolabs.org>
monitoring system. This plugin checks the status of PF, the OpenBSD
packet filter, and compares the current state count to given or default
thresholds, returning the result. It is written in C.
WWW: http://www.zampanosbits.com/check_pf/
PR: ports/110112
Submitted by: Kian Mohageri <kian.mohageri at gmail.com>
files, program output or other text data. The counters use regular expressions
to count the number of matches, or parse out specific text/numbers. The
resulting data can then be queried or graphed with the usual SNMP tools.
PR: ports/109103
Submitted by: brock at cotcomsol.com
of jobs that have already run. It obtains its information from your catalog
database. Aside from a nice graphical display, it provides summaries of your
jobs, as well as graphs of job usage. This is a fairly high level bacula
management tool. Here are a few points that one user made concerning this
important tool:
- It is web-based so can be accessed from anywhere.
- It is "read only" users can examine the state of the backups but not write
to anything and therefore do no damage
- It packs a phenomenal amount of information into a single web-page - that I
credit as being very good design!
The documentation for bacula-web can be found in a separate bacula-web
document in the bacula-docs release.
WWW: http://www.bacula.org/
PR: ports/107617
Submitted by: Dan Langille <dan at langille.org>
NDPMon, Neighbor Discovery Protocol Monitor, is a tool working with
ICMPv6 packets. NDPMon observes the local network to see if nodes
using neighbor discovery messages behave properly. When it detects
a suspicious Neighbor Discovery message, it notifies the administrator
by writing in the syslog and in some cases by sending an email
report.
WWW: http://ndpmon.sourceforge.net
Janos Mohacsi <janos.mohacsi@bsd.hu>
PR: ports/106840
Submitted by: janos.mohacsi at bsd.hu
or network device clients. It is used to transfer
configurations, boot images, and kernels images
(eg: IOS) to the devices.
These files are often tranfered with TFTP, but TFTP
has reliability and speed issues and file size
limitations due to it's protocol specification and
underlying transport; while RCP is not affected.
WWW: http://www.shrubbery.net/rcpd/
Submitted by: Babak Farrokhi <farrokhi at FreeBSD.org>
* It will monitor nearly anything you ask it to monitor (TCP + UDP
applications, IP connectivity, SNMP OIDS, Programs, Databases,
etc).
* It presents a nice clean, easy to view web interface that will keep both the
managers happy (Red Bad. Green Good.) and the techs happy ("Ah! that's what
the problem is").
* It can send alerts numerous ways (such as via pager) and can automatically
escalate if someone falls asleep.
WWW: http://argus.tcp4me.com/
PR: ports/105837
Submitted by: Brock Williams <brock@gringo.cotcomsol.com>
tables reachable from other hosts. You can add/delete/flush
IP addresses to/from a remote table with a single UDP
datagram. A simple client program is included to do this
from the command line.
WWW: http://wolfermann.org/pftabled.html
PR: ports/105713
Submitted by: Bartlomiej Rutkowski <r at robakdesign.com>
With TkNetmon someone can create graphical network map, produce config file
for "netmond", restart it, and view current network objects state,
as it reported by netmond.
WWW: http://vfom.narod.ru/TkNetmon
PR: ports/105562
Submitted by: Viktor Fomichev (ivfom at narod.ru)
web-based user interface for selecting, viewing, graphing, and now tracking
NetFlow data stored using Mark Fullmer's flow-tools software.
The user is able to filter data (inclusion or exclusion) by device, IP address
range, port, router interface, autonomous system (AS), specified time interval,
and now by protocols, TOS field, and TCP flags. Many of the flow-tools reports
are configured as drop-down selections. Users are also able to save reports and
graphs for later viewing.
WWW: http://ensight.eos.nasa.gov/FlowViewer/
PR: ports/104554
Submitted by: Alex Samorukov, samm at os2.kiev.ua
Arpalert uses ARP protocol monitoring to prevent unauthorized connections
on the local network. If an illegal connection is detected, a program or
script is launched, which could be used to send an alert message, for example.
WWW: http://www.arpalert.org/
vulnerabilities it has, and how they can be used in practice to
break a WEP protected wireless network. So far, WepLab more than
a Wep Key Cracker, is a Wep Security Analyzer designed from an
educational point of view.
WWW: http://weplab.sourceforge.net
PR: ports/102476
Submitted by: Anton Karpov <toxa at toxahost.ru>
to collect, visualize and analyze IP accounting data from the
Cisco routers.
Cisco routers themselves are capable of collecting IP accounting
information . i.e. an unordered set of IP source-destination
pairs along with a byte and packet counters corresponding to all
network traffic flows that passed through the router's interfaces.
These data can be a useful source for various analysis procedures
and billing systems but by itself, in their raw form they are
rather difficult to read and understand. In addition, a router
cannot keep a lot of data . its memory is needed for purposes
other than remembering what traffic, from what sources and where
it forwarded two month ago.
WWW: http://ipacco.sourceforge.net/
- Babak Farrokhi
babak@farrokhi.net
PR: ports/99451
Submitted by: Babak Farrokhi <babak@farrokhi.net>
plugins, insert the data into rrdtool database, and generate webpages
with rrdtool graphs of the performance data. nagiosgraph is easy to
configure, and ready to use for many nagios plugins.
WWW: http://nagiosgraph.sourceforge.net/
PR: ports/96769
Submitted by: Denis Shaposhnikov <dsh@vlink.ru>
Nettop is a program which looks like top, but is for network packets.
It requires libpcap and slang to be installed on your computer.
WWW: http://srparish.net/scripts/
for a subset of ASN.1 data types, sockets based networking etc.)
written entirely in Python. This package provides command-line utilities
(pysnmpget, etc).
WWW: http://pysnmp.sourceforge.net/
PR: ports/95675
Submitted by: Martin Jackson <mhjacks@swbell.net>
for a subset of ASN.1 data types, sockets based networking etc.)
written entirely in Python. This package provides additional python-format
MIB files for use with PySNMP.
WWW: http://pysnmp.sourceforge.net/
PR: ports/95674
Submitted by: Martin Jackson <mhjacks@swbell.net>
for a subset of ASN.1 data types, sockets based networking etc.)
written entirely in Python.
WWW: http://pysnmp.sourceforge.net/
PR: ports/95673
Submitted by: Martin Jackson <mhjacks@swbell.net>
you an overview of all services with troubled services.
WWW: http://www.vanheusden.com/nagcon
PR: ports/95096
Submitted by: Douglas K. Rand <rand@meridian-enviro.com>
Bandwidth Monitor NG is a small and simple console-based live
bandwidth monitor for Linux, BSD, Solaris, Mac OS X and others.
Short list of features:
* supports /proc/net/dev, netstat, getifaddr, sysctl, kstat and libstatgrab
* unlimited number of interfaces supported
* interfaces are added or removed dynamically from list
* white-/blacklist of interfaces
* output of KB/s, Kb/s, packets, errors, average, max and total sum
* output in curses, plain console, CSV or HTML
* configfile
WWW: http://www.gropp.org/
This library implements SNMP (the Simple Network Management
Protocol). It is implemented in pure Ruby, so there are no dependencies
on external libraries like net-snmp. You can run this library anywhere
that Ruby can run.
against a radius server. This allows for more rapid
testing/troubleshooting of radius authentication problems depending
upon the method by which the person is authenticating (dial-up
customers come to mind).
Author: Matt Miller <mmiller_at_hick.org>
WWW: http://freshmeat.net/projects/radauth/
PR: ports/91975
Submitted by: Andrew Kilpatrick <tiger_at_whitetigersd.com>
Chillispot is used for authenticating users of a wireless
LAN. It support WPA (Wireless Protected Access) encryption.
Authentication, authorization and accounting (AAA) is handled
by your favorite radius server.
PR: ports/90397
Submitted by: Sevan Janiyan <venture37@geeklan.co.uk>
check_snmp_pkgvuln is a Nagios plugin that detects hosts that are running
vulnerable ports based on the database of security vulnerabilities
provided by portaudit. The plugin communicates with the host via SNMP
using the HOST-RESOURCES-MIB::hrSWInstalledName MIB.
WWW: http://www.cultdeadsheep.org/~clement/
Approved by: clement (mentor)
* airodump: 802.11 packet capture program
* aireplay: 802.11 packet injection program
* aircrack: static WEP and WPA-PSK key cracker
* airdecap: decrypts WEP/WPA capture files
* arpforge: forges ARP packets
At the moment airodump and aireplay cannot be built on FreeBSD
PR: ports/88870
Submitted by: Lars Engels <lars.engels@0x20.net>
Ourmon is a network management and anomaly detection system
for performing various SNMP RMON-like network analysis
tasks. It uses the BSD bpf in combination with RRDTOOL as
well as various "top talker" style tuples including: top-N
flows which include IP, TCP, UDP, and ICMP flows, top SYN
senders, top TCP/UDP ports, top single IP src to many IP
dst senders, top single IP src to L4 (TCP/UDP), top ICMP
errors which includes UDP creators of ICMP errors and other
tools for both network management and anomaly detection.
RRDTOOL graphs include a year of baselined information.
New RRDTOOL graphs may be designed with user-configured BPF
expressions a la tcpdump. Reports and logging for top
talkers are also included.
WWW: http://ourmon.cat.pdx.edu/ourmon/
PR: ports/84530
Submitted by: Charlie Schluting <manos@cs.pdx.edu>
think mrtg with xml configs
Torrus is designed to be the universal data series processing framework.
Although most users deploy Torrus for SNMP monitoring, it might be useful for
data series of any nature. Tobi Oetiker's RRDtool is used for data storage.
* Configuration compiler and validator. It processes the XML configuration
files and saves the configuration into a database.
* View renderer and the web interface. They generate HTML and the graphical
representation of the datasources and provide user authentication and
authorization. All generated output is controlled by the configuration
parameters and templates. The users can easily create their own
presentation of data series.
* SNMP Collector. Modular collector core architecture allows further
extension with new collector and storage types. Any datasource can have
its own polling schedule.
* SNMP Device Discovery Tool. Devdiscover is a new, modular, flexible, and
expandable tool for automatic generation of Torrus configuration files.
New device types and MIBs are easily added as independent Perl modules.
* Threshold monitor. All data, regardless of their type and nature, can be
monitored according to the user-defined rules. The rules can also include
the datasource-specific parameters, e.g. boundary values etc. The
thresholds are specified by RPN expressions.
WWW: http://torrus.org
- Corey Smith
corsmith@gmail.com
PR: ports/86634
Submitted by: Corey Smith <corsmith@gmail.com>
connectivity between network segments. It is mostly useful to detect "leaks" in
large organizations that have private network segments physically separated
from the Internet.
PR: ports/88424
Submitted by: Vaida Bogdan <vaidab@phenix.rootshell.be>
grepip searches the named input FILE (or standard input if no files are named),
for lines containing an IP address matched to the given CIDR.
grepip finds IP in any context of a line, while grepcidr only if all line is IP.
PR: ports/88384
Submitted by: Serge Maslov <serge@maslov.biz>
Approved by: sem (mentor, implict)
This is a mini-SNMP daemon. The basic daemon implements the system group
and a number of private extensions to manage the UDP transport mapping,
communities, trap destinations and loadable modules. In this form it can
be used to provide remote access to arbitrary data that can be described in
the form as required by the SMI. The daemon speaks both SNMPv1 and SNMPv2c.
PR: 86400
Submitted by: Andrey V. Elsukov <bu7cher@yandex.ru>
Approved by: pav (mentor)
grepcidr can be used to filter a list of IP addresses against
one or more Classless Inter-Domain Routing (CIDR) specifications,
or arbitrary networks specified by an address range. As with
grep, there are options to invert matching and load patterns
from a file. grepcidr is capable of comparing thousands or
even millions of IPs to networks with little memory usage and
in reasonable computation time.
grepcidr has endless uses in network software, including: mail
filtering and processing, network security, log analysis, and
many custom applications.
PR: ports/80315
Submitted by: Douglas Fraser <doug+ports@idmf.net>
PNG image format. It somewhat resembles the Linux bwbar (although there is no
connection to it).
Features include measurement both on interface and assigned IP-address basis,
possible to run non-root and non-setuid, quite customizable (colours, geometry,
device max speed, etc). It also includes text output to the image.
PR: ports/76275
Submitted by: Fredrik Lindberg <fli@shapeshifter.se>
data export. Softflowd semi-statefully tracks traffic flows recorded by
listening on a network interface or by reading a packet capture file.
These flows may be reported via NetFlow to a collecting host or summarised
within softflowd itself.
PR: ports/73723
Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu>
features:
* Understands NetFlow protocol v.1, v.5, v.7 and v.9 (including IPv6 flows)
* Supports both IPv4 and IPv6 transport of flows
* Secure: flowd is privilege separated to limit the impact of any compromise
* Supports filtering and tagging of flows, using a packet filter-like syntax
* Stores recorded flow data in a compact binary format which supports
run-time choice over which flow fields are stored
* Ships with both Perl and Python interfaces for reading and parsing the
on-disk record format
* Is licensed under a liberal BSD-like license
PR: ports/73722
Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu>
tcptrack is a sniffer which displays information about TCP connections it
sees on a network interface. It passively watches for connections on the
network interface, keeps track of their state and displays a list of
connections in a manner similar to the unix 'top' command. It displays
source and destination addresses and ports, connection state, idle time, and
bandwidth usage.
WWW: http://www.rhythm.cx/~steve/devel/tcptrack
PR: ports/72543
Submitted by: Tor Halvard Furulund <squat@squat.no>
NFDUMP tools support netflow v5 and v7 capturing and processing.
nfcapd - netflow capture daemon.
Reads the netflow data from the network and stores the data into files.
nfdump - netflow dump.
Reads the netflow data from the files stored by nfcapd. It's syntax is similar
to tcpdump. If you like tcpdump you will like nfdump.
nfprofile - netflow profiler.
Reads the netflow data from the files stored by nfcapd. Filters the netflow
data according to the specified filter sets ( profiles ) and stores the
filtered data into files for later use.
nfreplay - netflow replay
Reads the netflow data from the files stored by nfcapd and sends it over
the network to another host.
WWW: http://nfdump.sourceforge.net
PR: ports/72171
Submitted by: Janos Mohacsi <janos.mohacsi@niif.hu>
decrease the likelihood of erronous command execution and
to maintain all network services from a central point,
EnderUNIX SDT anounces the availability of its 9th open-source tool,
netUstad.
It has been coded in C language and includes its own HTTP server.
The newly anounced version provides a web interface for
system administrators to add/delete/update IPFW rulesets.
You can manage your IPFW firewall via a TCP/IP connected remote PC, easily.
Development version icludes modules to manage whole
network services (routing tables, network interfaces)
PR: ports/69176
Submitted by: Ozkan KIRIK <ozkan@enderunix.org>
Approved by: krion (mentor) (implicitly)
This package contains a small Lightweight Flow Accounting (LFAP)
server and LFAP API library. LFAP open solution to delivering
accounting data from Riverstone Networks Switches and Routers.
You can use the sfas program to obtain micro-flow information
from a Riverstone switch running either in Layer 4 bridging
mode, routing or MPLS LSPs. Data that can be collected includes
everything from an IPv4 header and UDP headers and the src/dst
port from a TCP header.
WWW: http://www.riverstonenet.com/support/nmops/
detection system. Kismet will work with any wireless card which supports raw
monitoring (rfmon) mode, and can sniff 802.11b, 802.11a, and 802.11g traffic.
PR: ports/66274
Submitted by: Thomas Spreng <spreng@socket.ch>
plugins and store it in RRD-files. You can the use Apan to view graphs of
the data in Nagios web-interface.
WWW: http://apan.sourceforge.net
PR: ports/64941
Submitted by: Janos Mohacsi <janos.mohacsi@bsd.hu>
to the finest level of information available at the moment. Sometimes this
can mean an exact description of a port in a building anywhere in an enterprise.
PR: ports/64728
Submitted by: Russell Jackson <rjackson@cserv62.csub.edu>
arpscan is a very simple scanner which sends out arp requests
for the given IP addresses and displays a list of the found
hosts.
PR: ports/64605
Submitted by: David Yeske <dyeske@yahoo.com>
