|
North American Network Operators Group Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical AW: flow -> web
If one does not wanna use netflow, but ipaccounting, then this is a also a nice solution... http://ipacco.sourceforge.net/index.php tom from munich/germany -----Ursprüngliche Nachricht----- Von: owner-nanog@merit.edu [mailto:owner-nanog@merit.edu] Im Auftrag von Randy Bush Gesendet: Montag, 6. Februar 2006 09:25 An: nanog@nanog.org Betreff: Re: flow -> web folk have asked me to summarize. so here it goes "Justin M. Streiner" <streiner@cluebyfour.org> and Nicolas Strina <nicolas.strina@noc.ip-man.net> recommended the nfdump nfsen pair, http://nfsen.sourceforge.net http://nfdump.sourceforge.net Chris Kuethe <chris.kuethe@gmail.com> and Peter Wohlers <pedro@whack.org> recommended ntop http://www.ntop.org/ Peter Wohlers <pedro@whack.org> also recommended Stager http://software.uninett.no/stager/?page=docs Steven Rakick <stevenrakick@yahoo.com> recommended nSight http://www.obtuse.net/software/nsight Tony Hacche <hacche@gmail.com> recommended Crannog's NetFlow Tracker http://www.crannog-software.com/index.php?go=Product.ShowDetail&ProductID=1 Jared Mauch <jared@puck.nether.net> has a tool to detect and highlight ddos symptoms, but it does not have per-protocol sexy graphs. looks very useful for ddos detection, though --- i am currently playing with nfsdump/nfsen randy
|