[88440] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: flow -> web

daemon@ATHENA.MIT.EDU (Randy Bush)
Mon Feb 6 03:25:28 2006

From: Randy Bush <randy@psg.com>
Date: Sun, 5 Feb 2006 22:24:58 -1000
To: nanog@nanog.org
Errors-To: owner-nanog@merit.edu

folk have asked me to summarize.  so here it goes

"Justin M. Streiner" <streiner@cluebyfour.org> and Nicolas Strina
<nicolas.strina@noc.ip-man.net> recommended the nfdump nfsen pair,

    http://nfsen.sourceforge.net
    http://nfdump.sourceforge.net

Chris Kuethe <chris.kuethe@gmail.com> and Peter Wohlers
<pedro@whack.org> recommended ntop

    http://www.ntop.org/

Peter Wohlers <pedro@whack.org> also recommended Stager

    http://software.uninett.no/stager/?page=docs

Steven Rakick <stevenrakick@yahoo.com> recommended nSight

    http://www.obtuse.net/software/nsight

Tony Hacche <hacche@gmail.com> recommended Crannog's NetFlow
Tracker

    http://www.crannog-software.com/index.php?go=Product.ShowDetail&ProductID=1

Jared Mauch <jared@puck.nether.net> has a tool to detect and
highlight ddos symptoms, but it does not have per-protocol sexy
graphs.  looks very useful for ddos detection, though

---

i am currently playing with nfsdump/nfsen

randy


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[88440] in North American Network Operators' Group

Re: flow -> web

daemon@ATHENA.MIT.EDU (Randy Bush)Mon Feb 6 03:25:28 2006

daemon@ATHENA.MIT.EDU (Randy Bush)
Mon Feb 6 03:25:28 2006