[88441] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

AW: flow -> web

daemon@ATHENA.MIT.EDU (tom)
Mon Feb 6 03:44:25 2006

From: "tom" <tier1@ncinet.de>
To: "'Randy Bush'" <randy@psg.com>, <nanog@nanog.org>
Date: Mon, 6 Feb 2006 09:43:46 +0100
In-Reply-To: <17383.2010.973707.370336@roam.psg.com>
Errors-To: owner-nanog@merit.edu

If one does not wanna use netflow, but ipaccounting, then this is a also =
a
nice solution...
http://ipacco.sourceforge.net/index.php

tom from munich/germany

-----Urspr=FCngliche Nachricht-----
Von: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] Im Auftrag von
Randy Bush
Gesendet: Montag, 6. Februar 2006 09:25
An: nanog@nanog.org
Betreff: Re: flow -> web

folk have asked me to summarize.  so here it goes

"Justin M. Streiner" <streiner@cluebyfour.org> and Nicolas Strina
<nicolas.strina@noc.ip-man.net> recommended the nfdump nfsen pair,

    http://nfsen.sourceforge.net
    http://nfdump.sourceforge.net

Chris Kuethe <chris.kuethe@gmail.com> and Peter Wohlers =
<pedro@whack.org>
recommended ntop

    http://www.ntop.org/

Peter Wohlers <pedro@whack.org> also recommended Stager

    http://software.uninett.no/stager/?page=3Ddocs

Steven Rakick <stevenrakick@yahoo.com> recommended nSight

    http://www.obtuse.net/software/nsight

Tony Hacche <hacche@gmail.com> recommended Crannog's NetFlow Tracker

=20
http://www.crannog-software.com/index.php?go=3DProduct.ShowDetail&Product=
ID=3D1

Jared Mauch <jared@puck.nether.net> has a tool to detect and highlight =
ddos
symptoms, but it does not have per-protocol sexy graphs.  looks very =
useful
for ddos detection, though

---

i am currently playing with nfsdump/nfsen

randy


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[88441] in North American Network Operators' Group

AW: flow -> web

daemon@ATHENA.MIT.EDU (tom)Mon Feb 6 03:44:25 2006

daemon@ATHENA.MIT.EDU (tom)
Mon Feb 6 03:44:25 2006