Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Networking

conclusion

advertisement 
Network Monitoring and
Management
Conclusions
AfNOG 11, Kigali/Rwanda
What did we learn?
• We learned some of the advantages of having a wellmanaged network
• We learned the features of some Open Source Network
Management tools
o Nagios for monitoring network elements and servers
o RANCID for the backup of configs
o Cacti for graphing traffic and other statistics
o SWATCH/Syslog-NG for managing logs
o Smokeping for measuring latency in your network
• We tried them all in practice and make a simple working
setup
What did we not cover
• So much more...
• All this software has many more features and is extensible
o Read docs, forums, examples
o Read the source code if you can
o Ask questions, try it out
• There's commercial alternatives, and alternatives by
hardware vendors
o Compare the features, ask for a test version
o Only because it costs money, it's not necessarily
better/easier to manage (but maybe it is)
o It all depends on YOUR needs
o Support is also available for open-source tools
What did we not cover(2)
• There's more network management/monitoring than the
tools we covered, you can try the following tools (in no
particular order)
• Managing tickets/NOC queues (covered through exercises):
RT (Request Tracker) is a powerful ticketing tool
• Analyze traffic by type, source destination: Learn
about Netflow and tools like NFSen
More tools we did not cover
• Visualize network designs with tools like Dia or Microsoft
Visio or discover it automatically with Network
Weathermap
• Manage/secure who has router access with RADIUS or
TACACS servers like Shrubbery's TACACS+ daemon or
Freeradius
• Sniff and analyze Network traffic using Wireshark
• Install intrusion detection systems like SNORT
• Use a portscanner like nmap to find open ports or a scanner
like Nessus to find potential vulnerabilities in your network
We're still not done
• Use a Wiki or Content Management system for your
documentation like trac or TWiki
• Use Netdot and Netdisco to manage your addressing
equipment
• Manage code for your tools or other data which changes
using a versioning system like CVS or Subversion (we
mentioned it in RANCID)
Some more.......
Performance
• Cricket
• IFPFM
• flowc
• mrtg
• netflow
• NfSen
• ntop
• pmacct
• rrdtool
• SmokePing
SNMP/Perl/ping
• Ticketing
• RT, Trac,
Redmine
Change Mgmt
• Mercurial
• Rancid (routers)
• RCS
• Subversion
Security/NIDS
• Nessus
• OSSEC
• Prelude
• Samhain
• SNORT
• Untangle
And that's not all!!!
Net Management
•
•
•
•
•
•
•
•
•
•
•
Big Brother
Big Sister
Cacti
Hyperic
Munin
Nagios*
Netdisco
Netdot
OpenNMS
Sysmon
Zabbix
What were the main goals of this class
•
•
•
•
Depends on you and your users.
Increase uptime/reliability
Find errors/faults which increase latency or packet loss
Decrease amount of manpower needed to manage the
network - save you some time
• Easier documentation
• Most important is that you can take the knowledge
home and try the tools which are best for you in your
network.
Thank you for your time
• We hope the last two days have been helpful, and gave you
some inspiration
• We hope you learned something
• If you did, give us feedback - if you didn't please tell us too.
• If you have questions or feedback later, please contact us by
email!
References
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
RT: http://bestpractical.com/rt/
NSFen: http://nfsen.sourceforge.net/
Smokeping: http://oss.oetiker.ch/smokeping/
Dia: http://projects.gnome.org/dia/
Network Weathermap: http://www.network-weathermap.com/
TACACS+ daemon: http://www.shrubbery.net/tac_plus/
Freeradius: http://freeradius.org/
Wireshark: http://www.wireshark.org/
Snort: http://www.snort.org/
nmap: http://nmap.org/
Nessus: http://www.nessus.org/nessus/
trac: http://trac.edgewall.org/
TWiki: http://twiki.org/
Netdot: https://netdot.uoregon.edu/trac/
Netdisco: http://netdisco.org
CVS: http://www.nongnu.org/cvs/ http://ximbiot.com/cvs/cvshome/
Subversion: http://subversion.apache.org/
Related documents
network-documentation-and
network-documentation-and
Transparent approach to costing (TRAC)
Transparent approach to costing (TRAC)
Nessus
Nessus
Whitepaper - David Marcoux, CISSP
Whitepaper - David Marcoux, CISSP
15-Enumeration
15-Enumeration
20120625-Bootcamp-Learning UML with Enterprise
20120625-Bootcamp-Learning UML with Enterprise
max.ppt
max.ppt
Nessus®
Nessus®
Nessus - VMware Solution Exchange
Nessus - VMware Solution Exchange
thomastown recreation & aquatic centre disability action plan
thomastown recreation & aquatic centre disability action plan
Mark Krawczyk - Router Running Config Example
Mark Krawczyk - Router Running Config Example
Document5273522 5273522
Document5273522 5273522
smokeping
smokeping
Nessus Training - Session 3
Nessus Training - Session 3
Nfsen + Hadoop
Nfsen + Hadoop
Specification Language
Specification Language
Nessus and Mobile Device Scanning
Nessus and Mobile Device Scanning
L.A.S.T. (Linux Apache Subversion Trac) Version Control and
L.A.S.T. (Linux Apache Subversion Trac) Version Control and
Look Out! - Eric Conrad
Look Out! - Eric Conrad
Powerful Tools to Navigate Your Trac System
Powerful Tools to Navigate Your Trac System
Nessus Credential Checks
Nessus Credential Checks
FreeRADIUS Upgrade Guide
FreeRADIUS Upgrade Guide
Download
advertisement