Network Monitoring Tools

Written by Stanford University (SLAC)

Network Monitoring Tools * Les Cottrell, SLAC. Last Update: February 13, 2013 -- Major clean up of failing URLs using CheckLink suggested by

Brad Canham, and even better the Chrome browser extension for checking links, suggested by Brian Albert Jensen. ESnet | ESCC | Internet end-to-end monitoring | Tutorial 

This is a list of tools used for Network (both LAN and WAN) Monitoring tools and where to find out more about them. The audience is mainly network administrators. You are welcome to provide links to this web page. Please do not make a copy of this web page and place it at your web site since it will quickly be out of date. See  here if you wish to suggest

additions or changes.

Page Contents  Addition History Contents

Utilities and demos, Links, Visitors,   Addition history,

Introduction Suggesting Additions Network Monitoring Platforms Monitoring Tools Integrated with NMP Commercial Monitoring Tools, not

Integrated with an NMP

2013

Cedexis Radar, Enigma, Foglight, InfoVista Network Performance Management, NetFort SPAN Port Configurator, Network Timeout,NetXMS, Retrospective,

2012

ActionPacked, Aqualogic Monitoring System, Argus, Boundary, CapMon, Edoceo Entuity, Ethernet Packet Bombadier, Express Metrix,FrameFlow, KACE, GotSiteMonitor.com, LANGuardian, Luminet, Nectar Services, Netflow Tracker, Network Sate Notifier, Praetorian Guard, Speed Test, Visual Performance Manager (VPM),

2011

Alaloop, AlertFox, Catchpoint, Certus Digital, Congruity, GMS Live Expert, hostUcan, ICmyNetDNS, ICmy.NetFlow analyzer, iGLASS Network Monitoring Services, IPCopper, Kaseya Network Monitor, Lan-Secure, LogicMonitor, Microsft Network Monitor,NetFlowAuditor, NetQuest, netrounds, Network Monitor Software, PagerDuty, Pingsweep, Qosmet Switch Center, Verax NMS, vsFTP,

20 AccelOps, AlarmTilt, AppQoS Live!, Cascade Pilot Personal Edition, Cubro, ExtraHop, IP

Analyzer/Sniffer, Application/Services monitoring (Hosted/managed monitoring services), Flow monitoring, FTP, IP Address/Asset Management, IT Search, Network security, SNMP tools, Topology, VOIP,

Public Domain Network Monitoring Tools

Application Monitoring, BGP, Finger Printing, Flow monitoring, FTP, IPAM,Mapping, Monitoring Infrastructures, Network Security, Packet Capture, Path Characterization, Ping, RRDtool, SNMP, Throughput tools, Traceroute,

Web Tools Auxiliary Tools to Enable Monitoring,

Analysis, Report Creation or Simulation Further Information Disclaimer

Useful utilities and DemosSwiss Army Knife Internet Tool from RobTexWhat is my IP address/traceroute?What is my IP address, OS, browser?

PingER PingWorld PingER Internet PerformanceTest my network configuration from Stanford, from all over Network Path & Application Daemon What is the speed of your Internet connection 

10

Traffic Monitor, MTUPath, NetDB, Net Detective, NetworkBones, NetworkManagementSoftware, NeuralStar, Nexvu Analyzer, Reconnoiter, ScriptLogic Perspective, SevOne,SevOne Netflow tool, SevOne VoIP monitoring, SITEImpulse, System Shepherd, StealthWatch, TelcoAlert, WANGuard Flow'WABGuard Sniff", Webwalk,

2009

ACE Live NetFlow, ACE Live VoIP Monitoring, Aggregate Network Manager, AppNeta, ASDIC, Cyclops, DUMeter, eBox,EZEbSiteMonitoring, Fing, GNMS, Hounddog, Justsniffer, NetPrefect, Network Monitoring Tools, Netquest OptiCop Converger, OPNET Panorama, SolarWinds Network Performance Monitor (NPM), SolarWinds Netflow Analyzer, Performance Co-Pilot, Redcell, Serio IT Service View, SNMP Sweep SolarWinds Free network tools, Techout, uptime software,

2008

AutoMate, BGPLay, BGPmon, BreakingPoint, Capsa, Collectl, DopplerVue, EDDIE, EffeDetect, Engineer's Toolset, EtherDetect,Ethergrouik, ElvinRRD, FlowMon, FreeNATS, GEM Network Monitoring, GnetWatch, iBGPlay, InterMapper Flows, Inventory Genie,IPAudit, IPHost Network Monitor, Labtech Software, LANSurveyor, Lemon-, NetaNAV, MoniTiL, monitis, mon.itor.usd, Monitoring Genie, MTD Sentry, OPNET nCompass, NetGong, NetInfo, NetMRI, NetScope, Network Miner, Network Performance Daily, NFDUMP,NfSen, OPNET Modeler, Opsview, Osmius, PacketTrap, Paglo, Panopta, PC Inventory Advisor, Q3ADE, Remote Asset Tracker, Sentinel,Server Supervisor, Splunk, Tembria, tcpillust, The Dude, Total network monitor, ZettaView, Zyrion Traverse,

2007

Ace, APCON, akk@da, Andrisoft WANGuard, Anue, Aurora, BasicState-, CommandCenter NOC, David, Denika, Dummmynet, GFI LANguard, Gomez, GroundWork, Heroix, Hyperic HQ, IMMonitor, Monolith, moods, Munin, Net::Flow, NetMapper, NetQoS Performance Center, NetQos VoIP Monitor, Network Enforcer,   Network Management Tutorial , Network Weathermap, NetVoyant,OidView, op5 Monitor, Pandetix, Pingdom, Pingwy, Scrutinizer NetFlow & sFlow Analyzer, ServersCheck, SimpleServerMonitor,skipole-monitor, SLA, SMARTHawk, SuperAgent, Total Network Inventory, WAPT, WebPerform, WFilter, XRate1, XYMON,

2006

arping, Axence nVision, BBMonitor, Cacti, CSchmidt collection, Cymphonix Network Composer, Darkstat, Etherape, EZ-NOC, Eye-on Bandwidth, Gigamon University, IPTraf, Jnettop, LITHIUM, mrtg-ping-probe, NetMRG, NetworkActiv Scanner, NimTech, NPAD,Nsauditor, Nuttcp, OpenSMART, Pandora FMS, PIAFCTM, Plab, PolyMon, Rider, RSP, Pktstat, SecureMyCompany, SftpDrive, SNM,SpeedTest, SpiceWorks, Sysmon, TruePath, Unbrowse, Unsniff, WatchMouse, Webalizer, Web Server Stress Tool, Zenoss,

20 Advanced HostMonitor, Alvias, Airwave, BitTorrent, bulk, BWCTL, Caligare Flow

Visual TracerouteWhere am I? Where is another host? Find Lat/Long of a siteDNS Lookup, AS Lookup, 

Speed test for both download and upload speeds   Bandwidth test to my host choose method, Bandwidth from various international sites, Speed Test, Pingtest, Bandwidth Test, Website Speedtest, World's connection speeds from: Akamai, Ookla, NetIndex, MLab Internet measurement toolsEstimate bandwidth, WAN throughput calculator, Speed vs. distance,RTT & bandwidth test

Speed Test byAbsolute Futurity

05

Inspector, ClearSight, Distinct Network Monitor,EM7, EZMgt, Gigamon, Host Grapher II, HPN-SSH, Javvin Packet Analyzer, Just-ping, LinkRank, MoSSHe, mturoute, N-able OnDemand,Netcool, netdisco, Netflow Monitor, NetQoS, Pathneck, OWAMP, PingER, RANCID, Scamper, SCAMPI, Simple Infrastructure Capacity Monitor, Spirent, SiteMonitor, STC, SwitchMonitor, SysUpTime, TansuTCP, thrulay, Torrus, Tstat, VSS Monitoring, WebWatchBot,WildPackets, ZoneRanger,

2004

CleverEye, CueVision, D-ITG, FastCopy, FREEping, Ganglia, H.323 Beacon, GFI Network Services Monitor, internetVista, IPCheck Server Monitor, Little:eye, MonitorMagic, N-central, N-vision, Netmeter, NetMechnica, ACE Live (formerly Network Physics NetSensory), NetVizor, Observer, OSSMon, Overseer Network Monitor, Orca, PRTG Traffic Grapher, QRadar, Route Explorer, Scriptroute,Server Nanny, SNMP Explorer, ServerFiles.com, SNMP Informant, STAB a Linux tracepath, SolarWinds Network Performance Monitor (NPM), Vigilix, WatchTower Website Monitoring, WindowsNetworking.com, ZTI,

2003

ABwE, ActivXpets, Analyse It, Argus, Big Sister, eGInnovations, Internet Detective, JFF Network Management System, LANsurveyor,LANWatch, LoriotPro, MonitorIT, Nagios, NetIntercept, NetMon, NetStatus, Network Diagnostic Tool, Network Performance Advisor,Nimsoft, NPS, Network Probe, NetworksA-OK, NetStat Live, Open NerveCenpter, OPENXTRA, Packeteer, PacketStorm, Packetyzer,PathChirp, Integrien, Sniff'em, Spong, StableNet, TBIT, Tcptraceroute, Tping, Trafd, Trafshow, TrapBlaster, Traceroute-nanog, Ultra Network Sniffer, Zoho Corp ManageEngine OpManager,

2002

ANL Web100 Network Configuration Tester, Anritsu, aslookup, AlertCenter, Alertra, AlertSite, Analyse-it, bbcp, Bro, Chariot,CommView, Crypto-PAn, elkMonitor, DotCom-Monitor, Easy Service Monitor, Etherpeek, Fidelia, Finisar, Fpinger, GDChart, HipLink,ipMonitor, LANExplorer, LinkFerret, LogisoftAR, NetCrunch, NetDetector, NetGeo, NEPM, NetReality, NIST Net, NLANR AAD,NMIS, OpenNMS PastMon, Pathprobe, remstats, RFT, RUDE, Silverback, SmokePing, Snuffle, SysOrb, Telchemy, TCPTune, TCPurify,UDPmon, WebAttack, Zabbix,

2001

AdventNet SNMP API, Alchemy Network Monitor, Anasil analyzer, Argent, Autobuf, Bing, DSLReports, Firehose, GeoBoy, Packetboy etc, Internet Control Portal, ISDNwatch, Metrica/NPR, Mon, NetTest, Pathrate, RouteView, sFlow, Shunra, Trellian, WCAT, WhatsUp Gold, WS_FTP,

2000

Analyzer, bbftp, Big Brother, Cricket, EdgeScape, Ethereal (now renamed Wireshark), gen_send/gen_recv, GSIFTP, Gtrace, Holistix,/InMon, NcFTP, NetAlly, NetScout, Ntop, PingGraph, PingPlotter, Pipechar (part of NCS), RRD, Sniffer, Snoop, StatScope, View2000,VisualPulse, WinPcap, WU-FTPD, WWW

performance monitoring, Xplot1999

Cheops, Ganymede, hping2, Iperf, MatLab, MTR, NeoTrace, Netflow, NetLogger, NextPoint, Nmap, Pchar, Qcheck, SAA, SafeTP, Sniffit,ResponseNetworks, Tcpshow, Tcptrace

1998 NetOps, Triticom, Maple, PV-Wave, S-Plus, VisualRoute

1997

tcpspray, Mapnet, Keynote, prtraceroute clflowd fping, tcpdpriv, Pathchar, CAIDA Measurement Tool Taxonomy, bprobe & cprobe

1996 mrtg, InterMapper, Lachesis, Optimal Networks,

Introduction [Contents]

The following Network Monitoring Tools grew out of a list that were reported to be in use at 11 ESnet sites in a survey made by the ESnet Network Monitoring Task Force (NMTF) and completed in October 1995. For some snapshots of earlier web pages see the Internet Archive Wayback site. Where possible I have provided hypertext links to further sources of information on the tool. These links vary in quality ranging from a pointer to the vendors home page, to the man pages entry, and to how to download the code. We welcome corrections such as identifying broken links.

Suggesting Additions/Corrections etc.

This is a volunteer, unfunded effort. This helps assure its independence. Increasingly new additions are from reader suggestions/recommendations. If you have a suggestion for adding something: please send an email to cottrell at slac.stanford.edu making sure that you indicate where the tool fits in the hierarchy, provide a URL to get more information on the tool, and provide a short one sentence description of the tool's purpose with no marketing hyperbole. Also if you notice out of date or incorrect links please report. Thanks.Network Monitoring Platforms (NMPs) - Comparison of NMPs, [Contents]

Aggregate Network Manager  is an enterprise-grade

Monitoring Tools Integrated with NMP [Contents]

Cabletron Remote LAN Manager

network/application/performance monitoring platform. It tightly integrates with other smart building management systems, such as physical access control, HVAC, lighting, and time/attendance control.

Airwave  Management PlatformT (AMP) wireless network management software provides centralized control for Wi-Fi networks. Features include: access point configuration management, reporting, user tracking, help desk views, and rogue AP discovery.

akk@da  is a simple network monitoring system designed for small and middle size computer networks. Its purpose is to quick detect system or network fault and to display information about detected problems for administrators. akk@da is designed as a pro-active network monitor. It does not wait for information from any agents, systems, etc. It collects information every single minute (you can decrease this period to 1 second). Almost all services of the monitored hosts are discovered automatically.

Andrisoft WANGuard  Platform provides solutions for WAN links monitoring, DDoS detection and mitigation, traffic accounting and graphing.

Axence nVision  monitors network infrastructure: Windows, TCP/IP services, web and mail servers, URLs, applications (MS Exchange, SQL etc.). It also monitors routers and switches: network traffic, interface status, connected computers. nVision collects network inventory and audit license usage - it can alert in case of a program installation or any configuration change on a remote node. With the agent you can monitor user activity and access computers remotely.

Boundary  A SaaS monitoring and visualization service that provides insight into: real time (per second resolution) and historical end-to-end performance, traffic and flow analysis, and device performance. It is free for the first 2GB of data (approx. 15 servers)

CapMon  Network monitoring tool that takes away the hassle of maintaining a Nagios installation. CapMon uses RRD wrapped in Flash to display statistics, includes syslog, dashboard and SLA modules

Castle Rock CommandCenter NOC  from Raritan provides polling, Windows and

Ciscoworks Optimal Networks . ScriptLogic Perspective  has several

tools includingNetwork Traffic Analysis,VoIP monitoring andWireless monitoring.

Solarwinds has several tools including: Application Performance Monitor,NetFlow Traffic Analyzer,VoIP Monitor, Wireless Network Monitor.

UNIX/Linux server management, intrusion detection, vulnerability scanning, and traffic analysis in an integrated appliance.

Cymphonix Network Composer  monitors Internet traffic by user, application, and threat. Includes controls to shape access to Internet resources by user, group, and/or time of day. Also featuring anonymous proxy blocking, policy management, and real time monitoring.

David system  allows you to manage your resources and services through both Intranet and Internet. provide auto-discovering and network topology building features to help keep an intuitive view of your IT infrastructure. Resources, real-time monitoring and accessibility of historical data enable reaction to failures. Configured interfaces for monitored devices allow you to focus on the most important aspects of their work.

dopplerVUe  provides network discovery, mapping and rules system enables monitoring of Ping, SNMP, syslog, and WMI performance metrics. Can be used to monitor IPv6 devices. Monitors services such as DNS, http and email.

eBox  is an open source distribution and development framework, based on Ubuntu Linux, intended to manage services in a computer network.

EM7  from Sciencelogic is an NMS integrated with trouble-ticketing, event management, reporting, IP management, DNS and monitoring.

Enigma  NMS enterprise grade network management and monitoring solution is a suite of functions integrated into single product. It has been installed in many Queensland Government departments, where it manages and monitors many thousand network devices, servers and apps.

Entuity  provides a unified all-in-one network management solution for heterogeneous environments including integrations with BMC, Oracle EM, HP, IBM and others. Functionality includes discovery/inventory/topology, event & fault monitoring, port/device and flow-based performance, configuration management and extensive reporting.

Fidelia  also has the Helix entry level tool for small enterprises. Foglight  a Network Management System from Dell that enables discovery,

mapping and monitoring of network components worldwide. FrameFlow  is free server monitoring software that includes system health

monitoring, web site monitoring, SNMP monitoring, reporting, alerts by e-mail

and customizable dashboards. FreeNATS , is an open-source network monitoring, alerting and reporting system

available as PHP source and as a virtual appliance. GEM Network Monitoring  a network monitoring tool that provide SLA reports,

dashboards, also monitors anything within a IT network, performance graphs, notifications prior to device failures.

Hounddog  provides easy and affordable tools for IT Companies/MSP.s to monitor, manage and support their customers networks, servers and workstations.

InfoVista Network Performance Management  provides service level reporting and analysis tools for network and application performance management.

InterMapper  Networking monitoring and alerting software for Mac, Windows, Linux, and Solaris.

IP Host Network Monitor  is a network and server monitoring tool that lets you monitor availability and performance of mail servers, internet hosts, database servers, and other network resources. Performance counters on Windows computers can be monitored using WMI. Other supported protocols are HTTP, HTTPS, FTP, SMTP, POP3, IMAP, ODBC, PING...

ipMonitor  is a network monitoring solution that allows network administrators, webmasters, and Internet service providers to monitor any networked device on the Internet, corporate intranet, or TCP/IP LAN and receive alerts immediately via audible alarm, message, e-mail, or third-party software when a connection fails. It is a powerful personal monitoring product delivering low cost, simplicity of operation, and round-the-clock coverage.

Just For Fun Network Monitoring System (JFFNMS)  is FREE and designed to maintain a IP SNMP / Syslog / Tacacs+ Network. It can be used to monitor any standards compilant SNMP device, Server, TCP port or Custom Poller, also it has some Cisco oriented features.

KACE  from Dell Management Appliance delivers a fully integrated systems management solution.

Kaseya  is a solution for monitoring, notification, and reporting. It includes agentless monitoring of Windows, Unix, Linux, and BSD operating system. It also includes distributed testing, a unique feature that makes it possible to

monitor servers, routers and other network connected equipment that are behind a firewall or only accessible through a VPN. (Used to be called Intellipool).

Klogie  commercial remote network monitoring system that designed for ease of use.

LANsurveyor  network and desktop management software providing automatic network maps, asset management reports, network monitor and remote administration and distribution.

Lemon - is a server/client based monitoring system. On every monitored node, a monitoring agent launches and communicates using a push/pull protocol with sensors which are responsible for retrieving monitoring information. The extracted samples are stored on a local cache and forwarded to a central Measurement Repository using UDP or TCP transport protocol with or without authentication/encryption of data samples. Sensors can collect information on behalf of remote entities like switches or power supplies. The Measurement Repository can interface to a relational database or a flat-file backend for storing the received samples. Web based interface is provided for visualizing the data.

LITHIUM  LITHIUM|Core is an integrated device and service monitoring platform with a tightly coupled incident tracking and case management system and incorporates a web-based interface as well as Windows XP/Vista and Mac OS X monitoring consoles.

Little:eye , for management of IT infrastructure of enterprise provides management of fault, performance, inventory and configuration.

ActionPacked  is a platform that combines richly detailed network topology, device, and flow visualizations with direct interactive device control to manage the QoS, NetFlow, Routing, IP SLA, and Medianet features embedded inside Cisco devices.

LogisoftAR  provides is an NMP running under Windows providing device discovery, mapping, fault (using SNMP traps and syslog) and performance management. Reporting is provided in HTML pages.

Luminet  is an enterprise fraud management solution that tracks and analyzes user activity across multiple applications in a network.

MetaNAV  Network Administration Visualized is a software suite to monitor large computer networks. It automatically discovers network topology, monitors

network load and outages, and can send alerts on network events by e-mail and SMS, allowing for flexible configuration of alert profiles.

MoniTiL  continuously monitors applications, services, networks and events using WMI, snmp, web, tcp and ping.

Monitoring Genie  is a large scale data collection and monitoring platform built for telcos and large service providedrs, able to monitor multiple parameters in 100Ks of nodes in very shory cycles of about a minute using multiple protocols (icmp,snmp,sql,http,telnet,ssh,wmi,registry,open ports...). It can perform actions based on monitoring status changes using conditions and correlation rules. The platform comes with a builtin reporting system and pre made reports, and can extended to monitor any parameter in the supported protocols. The platform can work as a stand alone product or connect to existing management platforms (hpov, tivoli and micromuse, unictenter, etc).

MTD Sentry  brings information from SNMP and non-SNMP devices alike together into an enterprise monitoring system with extensions for video based devices.

Monolith  creates customized event management, netflow and performance solutions with a browser-based interface, a single, organic code-set and a dashboarding engine.

Netcool  suite offers five product families that support domain-specific IT management, end-to-end consolidated operations and business service management.

NeuralStar  provides enterprise-class capabilities including NOC level visibility, management of multiple and geographically distributed networks and automatic failover and redundancy for continuous operations.

OPNET nCompass  visualizes network performance metrics in real-time, consolidating topology, traffic and events in a unified view. It automates response to network events and contextually launches 3rd party tools for assisted troubleshooting.

NetGong  is a network monitoring solution allowing network administrators, webmasters, and Internet service providers to monitor any networked device on the Internet, corporate intranet, or TCP/IP LAN and receive alerts via audible alarm, message, e-mail, or third-party software when a connection fails.

NetInfo  is a collection of 15 network tools on a single, interface. NetInfo allows businesses to combat network downtime by allowing network administrators, webmasters, and Internet service providers to isolate faults, process diagnostic data and increase internal network security.

NetMapper  creates automated up-to-date Microsoft Visio� network diagrams, combining multiple physical (Layer 2/3) and logical views of the network with detailed device configurations and topology overlays like BGP, OSPF, VLANs and VPNs

NetMRI  from Netcordia automates much of Network Change and Configuration Management (NCCM)by collecting and analyzing network configuration, snmp, and syslong/event data, and providing daily actionable issues.

NetPrefect  is an enterprise class management and monitoring solution designed primarily for managed service providers that uses a variety of mechanisms to communicate with managed entities including but not limited to snmp, wmi, rs232 and icmp in order to collect statistical and state information (e.g. cpu usage, device/service availability etc) as well as executing management functions on the device.

NetQoS Performance Center  Monitors and provides insight into: end-to-end performance, traffic analysis, VoIP quality, and device performance.

NetXMS  is an open-source feature-rich network monitoring system that runs natively on Windows and various Unix flavours. It can be used for monitoring entire IT infrastructures, starting with SNMP-capable hardware and ending with applications on servers.

N-vision  provides availability, performance, security and service management to multiple customers from one central Web console.

NetCrunch  from AdRem, provides visualization of physical network topology; flexible performance monitoring, trending and reporting; event filtering and escalation; SNMP management; web access.

NetMechanica  provides low-cost network masnagement services. Netview Nimsoft  Monitoring Solutions (NMS) for Network Monitoring solution verifies

network connectivity to devices (routers, switches, servers, etc.) and application services (FTP, SMTP, HTTP, etc.) revealing accessibility and network latency.

The solution auto-discovers network interfaces, monitors interface traffic and calculates bandwidth utilization. Uses SNMP and if not available then syslog can be used.

op5 Monitor  provides active monitoring of the IT infrastructure - hardware, traffic & services. This includes connected components from servers, routers and printers services such as mail services, web servers and virus programmes. It is based on Nagios.

OpenNMS  is an enterprise-grade network management platform developed under the open source model. It is designed to scale to tens or hundreds of thousands of managed nodes from a single instance. OpenNMS is an integrated platform providing service availability management, performance data collection (via SNMP, JMX, HTTP, WMI, XMP, and other protocols), event management (internal events, custom events via an XML/TCP interface, and external events via SNMP traps and TL1), event de-duplication, and flexible notifications (via SMTP, XMPP, and many other protocols). The software is free under the GPLv2 license, and commercial support, training, and consulting are available.

OpenView Opsview  is enterprise network and application monitoring software designed for

scalability, flexibility and ease of use. Opsview has been in development since 2003 (originally based on Nagios) and is released under the GNU GPL license.

Opsview  is enterprise network and application monitoring software designed for scalability, flexibility and ease of use. Opsview has been in development since 2003 (originally based on Nagios) and is released under the GNU GPL license.

SolarWinds Network Performance Monitor (NPM)  SolarWinds Network Performance Monitor enables you to detect, diagnose, and resolve network outages and performance issues. It offers network-centric views that are designed to deliver the critical information you need.

Pandetix MSOware  is a web based service for monitoring, managing, reporting and notification of events for IP enabled devices. MSOware monitors your host with the selected tool. There is a free trial version.

Pandora the Free Monitoring System  is a Free Software set of programs, set under the GPL license, that monitors and detects network systems using remote

tests (ICMP, TCP Sweep, Network scan, SNMP monitoring...), or using local agents to grab application/system datga (has agents for Linux, AIX, HP-UX, Solaris and Windows XP,2000/2003). Pandora FMS is able to fire alarms, draw graphs and keep event history for each element using a SQL backend

Q3ADE Reconnoiter  is a monitoring and trend analysis system designed to cope with

large architectures (thousands of machines and hundreds of thousands of metrics).

Redcell  from Dorado Software includes: Discovery, Resynchronization, Topology, Database Services, Data Archiving, Scheduling, Auditing and Logging, Group Operations, CMDB and Event Monitoring. Automated Remediation and Configuration lets administrators find, configure and monitor applications and services, plus converging technologies.networking, security, systems, and storage.from a single console.

ScriptLogic Perspective  addresses the problems associated with bandwidth, network and application performance, and connectivity that are often issues for IT departments. Perspective supports multiple sites, is easy to use.

ServersCheck  is a web based monitoring tool for monitoring networks and servers (e.g. temperatures etc.)

SevOne  provides a distributed network performance management platform that delivers a scalable and comprehensive real-time monitoring, troubleshooting and reporting solution that supports over 15 collection methodologies such as SNMP, NetFlow, ICMP, IP SLA, WMI, vCenter API, XML, and JMX.

Spectrum  (ex Cabletron, then Aprisma then Concord Communications then CA). Network Tool specialized in Fault Management and Root Cause Analysis engine. Helps optimize MTTR and MTBF.The tool is modular in that it can also monitor/manage QOS,MPLS/VPN,Multicast Network, Device Configurations.

StableNet  Carrier-Grade performance management tool, built upon open standards. Supports active (Ping, SAA) and passive (SNMP, RMON, NetFlow, SFlow) measurements. Integrated topology/inventory, SLA/SLM, reporting.

Sun Solstice Switch Center  Network management and monitoring software using SNMP (v1-

3) network devices from any vendor including network discovery, logical and

physical (Layer 2/3) network topology mapping, performance monitoring, real-time reports and pro-active alerts.

SwitchMonitor  tracks traffic flows in, out, and through your network switches. SysOrb  monitors both network equipment and servers/applications and is

accessed via a web interface. Monitoring is done with Agents and IP and SNMP polling. SysOrb comes with an embedded database for stats, alert notification module, report generator etc.

SysUpTime  is a free distributed network/systems management product. It provides users out-of-box capabilities to efficiently and proactively manage networks of any size.

Tembria  Tembria Server Monitor is an affordable server monitoring platform with deep support for Windows server monitoring plus support for Linux and SNMP devices too.

The Dude  is a free network monitor will automatically scan all devices within specified subnets, draw and layout a map of your networks, monitor services of your devices and alert you in case some service has problems.

Verax NMS  is a service availability and performance monitoring system supporting a range of network elements (e.g. Windows and Linux hosts, ATM switches, Brocade and Juniper routers, ADVA Optical Networking FSP), applications (e.g. Apache Tomcat and WebSphere servers, Oracle and Microsoft SQL Server databases), virtualisation (e.g. VMware vSphere) and data center devices (incl. power supplies, air conditioning, sensors and detectors).

WhatsUp  Gold discovers and maps your network, uses SNMP v1-3, WMI and custom scripts to monitor resources and applications on your devices, notifies you via email, SMS, pager, etc., when problems occur, and provides historical and real-time reporting through a Windows console interface, full Web interface, and mobile interface. WhatsUp Gold is available for single networks and as a distributed solution for managing large, geographically dispersed networks

ZettaView  is a 24/7 monitoring, trend analysis, reporting, and alarm management system for LAN, WAN, and ATM that stores information at a 10 second granularity on local probes.

Zoho Corp ManageEngine OpManager

Zyrion Traverse  a network, application & server monitoring platform with open API, correlated views of IT "services" and integration with flow analysis tools.

Commercial Monitoring Tools, not integrated with an NMP [Contents]

Analyzer/Sniffer | Application/Services/Systems monitoring (Hosted/managed monitoring services) | Emulators | Flow Monitoring | FTP | IPAM | IT Search | Network Security tools | SNMP Tools |Topology/Traceroute | VOIP | Video-over-IP

ActivXperts  Network Monitor monitors servers and workstations in your LAN and WAN. The software monitors Windows, UNIX, LINUX and Novell servers for availability.

AlertCenter  provides monitoring, alerting and corrective action automation scheduling. It is part of the  MKS Toolkit.

AlertSite  measures, diagnoses, notifies and reports on the availability and performance of servers, URLs, web applications and virtually any Internet connected device or application.

Analyzer/Sniffers, see also public domain capture tools.o ACE Analyst  from OPnet is a transactional analysis solution, based on network packet captures.o Anritsu  provide the MD1230 portable network and IP network performance monitor.o Anasil , Analyzer  is a software network analyzer of Ethernet networks for Windows 95/98/NT/2000.o Anue Systems , makes a Net Tool Optimizer that is used to connect multiple monitoring tools to a network

link, or one tool to multiple links. This is a hardware device. It is similar to Gigamon.o APCON , manufactures a physical layer matrix switch to remotely move and share network monitoring

tools using a software interface or scripting.o ClearSight  provide a Monitoring/Analysis/Network Recording/Sniffer (up through 10Gbits/s), Packet

generator. ClearSight's solutions are graphically oriented.o Capsa  Capsa performs real-time packet capturing, 24/7 network monitoring, protocol analysis, in-depth

packet decoding, and automatic expert diagnosis.

o CommView  is a program for monitoring Internet and Local Area Network (LAN) activity capable of capturing and analyzing network packets. It gathers information about data passing through your dial-up connection or Ethernet card and decodes the analyzed data.

o Cubro  provide a network processor based packet handling engine (packetmaster) and software to sniff and analyze packets on multiple links and can eliminate duplicates appearing on multiple links.

o Distinct Network Monitor  is a software packet capture and network protocol analyzer for Windows that translates complex protocol negotiation into natural language, pinpointing where errors occurred.

o Easy Service Monitor  (ESM) will monitor network services to see if they can work properly with a predefined time interval. It runs on Windows.

o EffeDetect  an HTTP packet sniffer, protocol analyzer and file reassembly software based on windows platform. Unlike most other sniffers, it is dedicated to capture IP packets containing HTTP protocol, rebuild the HTTP sessions, and reassemble files sent through HTTP protocol. Its smart real-time analyzer enables on-the-fly content viewing while capture, analyze, parse and decode HTTP protocol.

o EtherDetect  provides a connection-oriented view for analyzing packets.o Etherpeek  for Windows is an Ethernet network traffic and protocol analyzer designed to assist in

troubleshooting and debugging mixed-platform, multi-protocol networks.o Finisar  provide sniffer like stand alone network test and monitoring devices for 10/100/1G and iSCSI,

Infiniband and Fiber Channel.o Gigamon  Provide a hardware switch to enable connecting a sniffer to multiple links.o IPCopper  provide an appliance for monitoring network trafic by sniffing it.o IP Traffic Monitor  provides real-time information about network utilization for each application and store

information into a database for history review.o Javvin Packet Analyzer  software-based network analyzer monitors Ethernet and WLAN traffic in real

time, and decode packets and displays in.o LANExplorer  provides packet capture, decode, filtering, matrix, host table, statistics, theresholding and

alarms for Windows hosts.o LANGuardian  captures and analyzes the traffic flowing through your network switch, stores it in a

database, and displays the details in a web browser.

o LANSurveyor  SolarWinds automatically discovers your LAN or WAN and produces comprehensive, easy-to-view network diagrams that integrate OSI Layer 2 and Layer 3 topology data including switch-to-switch, switch-to-node, and switch-to-router port connections.

o LANWarch  Windows software-based network packet analyzer monitors traffic in real time and displays a wide range of statistics in graphical form.

o LinkFerret  tools are designed to provide a comprehensive set of monitoring utilities and packet sniffers to be used for capture, statistical analysis, and protocol decoding in your Ethernet network. It runs on Windows 98/NT4/2000/XP.

o Netquest  OptiCop Converger: Optimizes Network traffic for better utilization of network monitoring tools through the use of link aggregation, packet filtering and interface/protocol translations capabilities.

o Network Probe  is a Windows or Unix network monitor and protocol analyzer providing a picture of the traffic situation on your network and enables you to monitor network traffic in real time, hunt down, identify, and isolate traffic problems and congestions on your network.

o NetworkActive PIAFCTM  (Packet Intercepting, Analyzing, File Constructing Traffic Monitor) network traffic analyzer; packet/protocol analyzer, HTTP file rebuilder, graphical traffic mode (graphical overview of current network communications), and traffic statistics mode. There is also a free for personal and commercial use version that provides a network traffic analyzer plus a packet/protocol analyzer and HTTP file rebuilder.

o NetScope  Graphical network visualisation tool with per-second resolution, real-time and historical data.o Observer  from Network Instruments is a network analyser (Packet sniffer) for 10/100/1000 100/1000 Full

Duplex and Multi trunked Ethernet links, wireless a,b an d g, token ring and FDDI.o PacketBoy  is a Win9x/NT & Unix packet sniffer analyzer decoder package capable of decoding many of

the commonly used LAN protocols.o PRTG Traffic Grapher  Windows software to monitor bandwidth usage and other network parameters via

SNMP. Has a builit in packet sniffer. Freeware also available.o Sniffer  resource for product information on both portable and distributed Sniffer protocol analyzers,

network troubleshooting white papers, Sniffer University training courses, and free protocol stack posters.o Sniff'em  is a Windows based Packet sniffer, Network analyzer and Network sniffer.o Ultra Network Sniffer  for Windows lists network packets in real-time from multiple network cards and

also supports packet capture.

o Unsniff  Network Analyzer. Scriptable and extensible network analyzer with fresh new views of protocols URL.

o VSS Monitoring  provides a range of distributed traffic capture systems and taps from 10/100 to 10 GigE for complete, selectable and centralized visibility of networks, improving network analyzer reach and efficiency.

o WANGuard Sniff  is a software sniffer that provides centralized visibility of networks, including traffic accounting reports, traffic tops, IP graphs, traffic anomalies detection.

o WildPackets Omni  fault analysis platform for optimizing network services and improving uptime on enterprise networks.

Applications/Services/Systems monitoring (Hosted/managed monitoring services)o AccelOps  integrated monitoring solution, which does security, performance, availability and change

monitoring for data centers and cloud services.o Advanced HostMonitor  is a system management tool that continuously monitors servers' availability and

performance. In the event of network errors, HostMonitor will alert the network administrator.o Alchemy Network Monitor  monitors network servers: TCP/IP, ICMP, IPX/SPX, Oracle, MS SQL, NT

EventLog, SQL query, HTTP URL, NT service state, maintains log file and sends notifications if the server goes down. Also marketed in Europe as Alchemy Eye.

o AlertFox  website and web application performance monitoring. Supports transaction monitoring of sites that use complex HTML, AJAX, Flash, Flex, and Silverlight. In-depth root cause analysis for trouble-shooting sporadic issues.

o AppQos Live!  from iTrinergy provides rapid answers in identifying, in real time, the causes of poor application and network performance problems.

o Aqualogic Monitoring System  helps you to monitor your mission critical applications without installing any agents/software on the production or pre-production environments. AMS lets you to configure the frequency of the monitoring attributes to as low as 15 seconds, which results in real-time monitoring.

o Argent  Argent has three products - The Argent Guardian, a real-time monitoring and alerting system for NT/2000 servers as well as SNMP-compliant devices; The Argent Predictor, a trend-analysis product for both NT/2000 servers and SNMP devices; and The Argent Sentinel, a web monitoring product.

o Automate  Enables a wide range of automation imperatives encompassing data aggregation, application integration, system/application/network monitoring and problem resolution, disaster recovery, file/data backup etc.

o BBMonitor  Windows bandwidth test software to monitor bandwidth usage and speeds. LAN and Internet bandwidth meter.

o Catchpoint  provides web performance monitoring services relying on synthetic agents on multiple locations around the world and JavaScript based performance monitoring of actual end users.

o Chariot  evaluates the performance of networked applications, performs stress tests of network devices and predicts networked application performance prior to deployment.

o CleverEye  provides an availability monitoring software for servers, network appliances, databases and applications.

o Congruity Inspector collects and presents network LAN-WAN traffic as hyperlinked relationships. View systems, ports, protocols, applications, and content in a relational context so you can understand how each affects everything else. In 3 clicks, Inspector quickly identifies issues associated with slow network, WAN problems, poor application response, connectivity, access control and security.

o CueVision  Windows based tool to monitor website, servers and network devices.o DotCom-Monitor  is an External Web Monitoring Service that brings together Monitoring, Reporting,

Notification, Escalation and Analysis for HTTP, HTTPS, SMTP, POP3, DNS, FTP, ICMP and SOAP applications.

o Edoceo  provides network and application monitoring services, built with PHP on top of Nagios, pnp4Nagios and OpenVAS

o egInnovations  provide Enterprise Management Products with capabilities involving the ability to offer subscription based remote monitoring through a web browser console, real time monitoring and problem diagnosis and proactive alerts.

o Express Metrix Network Inventory Software  Hardware/software inventory and application usage metering tool for Windows-based network environments

o ExtraHop  Networks Application Performance Management system provides passive, real-time analysis from L2-L7 for proactive early warning and accelerated troubleshooting across network, web, database, and storage tiers, spanning physical and virtual environments. It combines the advanced troubleshooting

capabilities of Network Performance Managers with the superior application-level visibility of User Experience Monitors.

o Eye-on Bandwidth  is a bandwidth monitor designed for scalability, speed and security . It has multiple user levels with different privilegies, and is managed by a web interface.

o EZ-NOC  provides a website monitoring tool using distributed servers around the world. It also includes network monitoring tools like: DNS, EMAIL, WEBSITE, SSL, ISP Speed Test, What Is My IP and Whois.

o Ganymede  provides performance management for clients,servers, applications, and the network as an integrated system.

o Gomez  provides diagnostic website and web application monitoring services from 12,000+ global testing locations that help companies to measure end-user web performance and troubleshoot application performance problems.

o Hosted/Managed Monitoring Services Alaloop  provides through a managed service/SaaS mode (internet or intranet) ready to use

dashboards to monitoring networks and housing SLA as well as application peformances(QoS and QoE)

Alertra  Checks (http, https, ping, SMTP, POP3, IMAP4, FTP, TCP) web server from multiple stations around the world.

iGLASS Network Monitoring Services  monitors your network's performance by providing 24/7 NOC monitoring services for your network, servers and critical applications.

GMS Live Expert  blends traditional IT Help Desk, with remote management software to ensure Reseller Partners, and their end customers have one vendor responsible for services and remote management.

LogicMonitor  is a SaaS-based automated monitoring tool that monitors networks, servers, virtual environments, applications, and storage from a single pane.

monitis  provides a "24 x 7" website, applications, systems, network and web traffic monitoring service helping users quickly identify faults and deficiencies to ensure continuous operations of their IT infrastructure and maintain business operations that provide the ultimate web experience. Particularly Monitis provides personalized Ajax dashboard interface, checks server performance and availability, generates uptime reports, tracks visitors, checks CPU, memory and other systems

resources, and alerts its users in case abnormalities are detected. External end-user checks are performed from geographically dispersed servers as well from customer locations. Internal checks can be performed inside of network firewalls through smart agents.

Praetorian Guard  is a Hybrid SaaS solution for network and user monitoring, notification and real-time reporting through a Windows GUI. It can inventory installed software and hardware, monitor event logs, user activity and overall computer performance. It is designed to support both centralized administration and distributed management.

pingwy Monitoring  monitors remotely services like http,https,ftp,dns,telnet,ssh,pop,imap,smtp and alerts you by mail and SMAS when the service goes down by mail. It also allows you to have a precise view of your server's access and load times upon different periods.

SecureMyCompany  provides hosted, On Demand network and systems management software for a low monthly fee. Solutions include SNMP, WMI, Event Log and many more monitoring features.

SiteMonitor  is a website uptime and measurement tools that verifies the performance of non-transactional websites up to every minute from 25 points of presence around the world.

Speed Test  is a meter that monitors your internet connection, web site, cpu, memory, Hard Drives, Wifi, LAN, Processes and much more all in real time and will store all data recorded into an log, so it can be easily imported into almost any application. This data can be used to help in resolving problems with your internet connection or computer. Speed Test allows you to view the data in many ways.

TelcoAlert  is a hosted solution that monitors and notifies for testing fax systems and circuits. Visual Performance Manager  provides enterprise service intelligence to help organizations deliver

business services. WatchMouse  offers professional remote server monitoring services from 16 locations worldwide:

http, https, ftp, pop, imap, dns, etc. Alerting by email, SMS, IM, and pager. Extensive reporting, also useful for SLA monitoring.

o Heroix Longitude  web-based, agentless application monitoring tool.o ICmynet.DNS  is a free web service for testing the health of DNS domains and DNS servers. More than 30

tests in less than a minute, visualization of DNS errors and server availability.o Integrien  features centralized, agentless monitoring of web and data base servers/applications. Used to be

SiteAlive from CreationPoint.

o IPCheck Server Monitor  Network Up-/Downtime Monitoring Monitors critical network resources and detects system failures or performance problems. Freeware available.

o ACE Live (formerly Network Physics NetSensory) as of Nov '07)  passively monitors network traffic providing utilization by protocol, application, host groups as well as topology, re-try and response time information. Good for real-time monitoring and trouble-shooting, also provides alerts and export of reports to web accessible pages.

o GFI Network Server Monitor  Monitors your network & servers for failures and fixes them automatically. Checks Exchange Server, SQL, Oracle, HTTP/FTP, Disk health & space, event logs

o IMMonitor , is network monitoring software that can monitor chat content, email content and web surfing activities in your network.

o internetVista  remotely monitors web sites and Internet services for availability (http, https, smtp, ftp, nntp, tcp). Notifications sent via email and SMS. Monitoring centres in United States and Europe

o Labtech Software  includes the following features: Remote Monitoring, Software & Hardware Auditing, Remote Control, Software Deployment, Scripting, Automation, Auto-fixing Software Update, Ticketing, and timekeeping.

o MonitorIT  monitors, detects, alerts, diagnoses, measures, collects and reports on Windows Servers/Workstations, SNMP & SYSLOG Devices

o mon.it.us  is a free web-based service that grants you a suite of tools for monitoring performance, availability, and traffic statistics. You can establish your website's response time and set up alerts for when a service becomes unavailable. You can also set-up weekly, automated benchmarks to see if changes you.ve made impact speed and performance either positively or negatively.

o MonitorMagic - Server & Network Monitoring  is a proactive monitoring/alerting tool for Windows 2003, 2000 and NT servers, workstations and SNMP devices.

o N-able OnDemand  MonITor Online provides 24�7 proactive network monitoring through status, notification and performance reporting without any network reconfiguration.

o N-central  is an IT governance platform for the mid-enterprise that manages information technology and security services from a business perspective.

o NetMon  hardware box that monitors network/service components including: routers; firewalls; file, web, dhcp, dns, syslog servers. Also provides protocol usage, bandwidth utilization, top web users and destinations, latency, up/down time, TCP/IP services.

o NetStatus  workgroup level monitoring application designed to be used in situations where you need to monitor anywhere from 1 to 50 servers or devices on a network.

o NetVizor  provides network monitoring and surveillance software to track workstations and individual users that may use multiple PC's on a network.

o NetworksA-OK  appliance, provides end to end monitoring of your network and applications (web, email, database) performance and security.

o NimTech  provides NIME an end-to-end TCPIP performance characterization tool based on a client/server architecture. It allows launching various network tests from & between any location to quantify in real-time the performance of a TCPIP network between two endpoints hosts.

o NPS  Network Performance Services provides network, system, application, and security monitoring products and services via a 7x24 Network Operations Center. All products and services include automated and customized alerting, and web based performance reporting.

o OPNET Panorama  continuously monitors thousands of system and application metrics within each server, across all tiers, and automatically spots performance anomalies with advanced deviation tracking.

o Solarwinds Server & Applications Performance Monitor  brings monitoring, alerting, and reporting capabilities to applications and servers. Discover your applications and get the visibility you need into application performance and the underlying operating systems and servers they run on.

o Overseer Network Monitor  is a W2K network monitor providing easy installation, Microsoft Management Console configuration, and runs as a service to provide rock-solid reliability. Monitors websites, network devices, servers, services, and notifies administrators via Email, pager, cell phone, or net send.

o PRTG Traffic Grapher  Windows software to monitor bandwidth usage and other network parameters via SNMP. Freeware also available.

o Server Nanny Network Monitor  monitors servers and network devices, sends problem notifications, performs actions, and logs performance data.

o Server Supervisor  monitors the availability and performance of various network resources. The program applies resource-specific approach to handle all cases from regular local workstations to complex web and database servers. It can be used by several people simultaneously. They can use a web interface to configure monitors and receive custom alert notifications depending on their roles. The program comes with built-in statistics analysis tool.

o ServicePATH  from Trendium provides plug-and-play service intelligence system that can collect and synthesize data from networks, applications / business processes and OSS. This synthesized data model is then used to assess and assure service delivery in real-time. The system identifies anomalies as they occur, pinpointing their cause and analyzing their effects on services and the business. It can also automatically initiate corrective action.

o SimpleServerMonitor  is an easy to use network server monitoring tool. It supports Ping, HTTP/HTTPS, FTP/FTPS, SMTP/SMTPS, POP3/POP3S, IMAP/IMAPS, and Custom monitors (supports SSL/TLS).

o SLA Commander  integrates with ACE (also from OPNET) to proactively capture traces of problematic transactions.

o SuperAgent  Monitors all TCP application packets as they travel from the network through the data center and out again, providing a way to measure network round trip time, server response time, data transfer time.

o uptime software  IT Systems Management that monitors, measures and manages across locations (multiple datacenters) environments (physical and virtual), platforms (Windows, Linux, Soalris, AIX, VMware, Novell, HP/UX, etc), applications, and networks.

o Vigilix  event detection and notification software for applications.o WatchTower  system monitoring and management software application that runs within a Web-based

portal environment. Big Brother  and its clone Big Sister consists of local clients that test system conditions and the availability of

network services, and send these status reports to one or more DISPLAY servers where these reports appear as little dots on a web page, or PAGER servers that notify administrators about system problems.

DUMeter  is a Windows tool to provide a visualization of the data that is flowing through your computer's network connection. It includes includes a reporting facility, a notifications and events system

DSLReports  provide measurement reports (e.g. speed tests, security scans, loss). elkMonitor  monitors your sites around the clock from servers across the globe, elkMonitor will alert you to signs

of trouble. Emulators

o Anue Network Emulators  are used to generate network latency, delay variation (jitter), packet errors, bit errors and other network impairments in order to test application performance over a WAN prior to deployment.

o BreakingPoint  provides testing tools for application, performance, and security of content-aware network devices.

o PacketStorm  IP Network Emulators reproduce the unfavorable conditions of IP Networks and WANs in a controllable and repeatable lab setting.

o Shunra  develops testing and evaluation tools for internet and intranet based network technologies and products.

Engineer's Toolkit  is a bundle of 49 networking tools that monitors and alerts on availability, bandwidth utilization, and health for hundreds of network devices, provides network diagnostics for troubleshooting and resolving complex network, offers an array of network discovery tools that facilitate IP address management, port mapping and ping sweeps, and eases management of Cisco� devices with tools for real-time NetFlow analysis, configuration management and router management.

Flow Monitoring

ACE Live Netflow module uses integrated web-based dashboards to provide a business-centric view of network utilization and application performance to prioritize problem resolution and effectively manage SLAs.

o Aurora  Network Traffic Analysis and Evaluation from IBM.o Caligare Flow Inspector  from Caligare is a Netflow monitor and analyzer with many graph statistics, low

level searching, application recognizer and utilization maps. Available in the US asNetIMonitor through Caligare partner Net US.

o FlowMon  is a NetFlow monitoring solution (IP flows), providing wire speed processing with no packet loss, for all types of networks from 10Mbps to 10 Gbps.

o ICmy.NetFlow analyzer  is an application for deep network traffic investigation, analysis and reporting. It is based on NetFlow statistics, exported from your routers and switches to ICmy.NetFlow server. Highlights: Web based Windows and Linux application,Cisco NetFlow 5 and 9 support (or equivalent: j-Flow, NetStream etc.),Flow statistics based on IP subnets, Hosts, Applications, Protocols, QoS, AS numbers.

o InMon  provides traffic flow monitoring tools for high-speed switches. The software is able to monitor tens of thousands of switch ports continuously, producing real-time top flows charts, and site-wide application-level traffic matrices.

o Intermapper Flows  from Dartware is a NetFlow and SFlow collector and analyzer that lets you see exactly where traffic comes from, who's sending it, and what it's used for. Runs on Windows, MacOS X, Linux, and Unix.

o NetDetector  from Nicksun a non-intrusive network security monitoring product that (when deployed as part of your data communications infrastructure) inspects traffic flows, detects the activities of intruders, sets alarms, makes continuous copies of data from the network, and analyzes every packet in the network in real-time at production network traffic rates.

o Netflow  from Cisco.o Netflow Analyzer  is a product specifically meant for Traffic Analysis and Network Forensics, therefore,

gives an in-depth visibility into the network traffic, bandwidth utilization, top talkers in the network etc from various flows, such as, NetFlow, sFlow, jFlow, IPFIX, Netstream etc. NetFlow Analyzer also has partnership with Cisco and 3COM.

o NetFlowAuditor  profiles flow data to help organizations quickly identify and alert on network anomalies to help resolve performance problems and manage network security and compliance across business services and applications. Highly fault tolerant, scalable and granular. Learns intensive network profiles with real-time, trending, multiviews, scheduled reporting and alerting. ipv6 compliant. Supports Cisco NetFlow v5/7/9, IPFIX, sFlow, jFlow, NetStream and Flexible NetFlow on Linux and Windows.

o Netflow TRacker  integrates with Visual Performance Manager and uses NetFlow data collected from the routers already deployed throughout your infrastructure.

o NetQoS  uses NetFlow to identify when and where problems are occurring or occurred, identify viruses using real time reporting, remove unwanted traffic instead of unnecessarily upgrading links, view and plan the impact of applications on the network over time.

o NetIntercept  is delivered as a complete system, with hardware and software pre-installed, and captures in real-time and provides later on demand batch analysis of the data.

o Nexvu Analyzer  analyze, classify 3000+ applications and protocols and report 35 metrics related to health, utilization and performance at line speed. It is an application aware network performance monitoring tool with JAVA GUI and full SNMP capabilities. Nexvu also has packet capture and analysis

engine and can work as a netflow director. It is available as a software / real appliance and as VMware virtual appliance

o Solarwinds Netflow Traffic Analyzer  enables you to quantify exactly how your network is being used, by whom, and for what purpose. Find the bottlenecks, and shut down the bandwidth hogs.

o Packeteer  provides network traffic characterization, using signatures derived from network layers up through 7, it can then use this information to do TCP rate control (using CoS/ToS. DiffServ & MPLS) to ensure timely performance.

o PRTG Traffic Grapher  Windows software to monitor bandwidth usage and other network parameters via SNMP. Supports Netflow. Freeware also available.

o Scrutinizer NetFlow & sFlow Analyzer  NetFlow and sFlow Analyzer provides detailed network utilization information for the users and applications causing the most traffic using a variety of flow-based technologies.

o SevOne  Dedicated NetFlow Collector (SevOne DNC) is a dedicated appliance for organizations with heavy NetFlow reporting, analysis and troubleshooting requirements, providing in-depth data about traffic flows in terms of applications, protocols and hosts and their impact on the network.

o sFlow  probe from InMon is a monitor/SPAN port probe capable of continuously monitoring application level traffic flows at a full 1Gigabit (over 1,500,000 million packets per second).

o StealthWatch  provides flow-based network performance and security monitoring for enterprise networks.o WANGuard Flow  is a NetFlow analyzer that provides centralized visibility of networks, including traffic

acccounting reports, tops, IP and ASN graphs, traffic anomalies detection. FTP

o FastCopy  provides reliable, secure, bandwidth controlled, automated, enhanced file transfer.o Trellian  Trellian FTP is a file transfer client that allows you to transfer files between your PC and any FTP

server on the Internet.o WS_FTP  for windows provides a fast and easy way to move files securely (with SSL) over the Internet.

there is a client and server HipLink  is a one or two-way wireless data and messaging solution that enables software used for network

monitoring, field force automation, email, customer support, help desk, to communicate with data enabled wireless devices, including digital cellular phones, PDAs, one-way and two-way pagers.

Holistix  Web Manager is software installed inside the firewall that monitors and manages all web system components including web servers, databases, urls, applications, etc. Holistix also has a service, called Remote Monitor, that Measures your site's performance 24 hours a day from monitoring locations around the world.

Internet Control Panel  performs checks every five to ten minutes on the availability, performance and content of your website. It also checks other important internet services you depend on; email, file transfer and authorization processes.

IP Address/Asset Managemento Inventory Genie  is a Discovery based Inventory system, that can automatically build an inventory on any

subject (specially network & system inventories ) using simple wizards, parsers and multiple protocols (icmp,snmp,sql,http,telnet, ssh,wmi,registry,open ports,...). It can be used to populates CMDBs. It has many pre-made discovery rules. It has the ability to perform remote actions on selected elements based on the information in its DB, thus enables provisioning.

o PC Inventory Advisor  automatically queries all computers on your network and reports back with details about OS and hotfixes, installed software and hardware, network alerts and visual comparison of configurations.

o Remote Asset Tracker  is a network inventory and PC auditing software designed specifically for medium and large companies.

o Total Network Inventory  is a PC audit and Network inventory software for office and large scale enterprise networks. Total Network Inventory interrogates all computers and notebooks on a network and reports back with complete information about OS, service packs, hotfixes, hardware, software, running processes, etc. on remote machines. This information is added to the centralized database and network administrators are able to generate reports about each or all PCs (notebooks) on a network. The program is agent-free and requires no software installed on remote machines (laptops).

ISDNwatch  is an ISDN network management suite for your ISDN routers. IT Search

o Paglo  discovers everything IT and allows users to search and monitor their server, network, user, and configuration information. The Paglo Crawler is open source and it is free to get started with the service.

o Retrospective  provides ad-hoc search and log analysis.o Splunk  allows you to search and navigate IT data from applications, servers and network devices in real-

time. It includes logs, configurations, messages, traps and alerts, scripts, code, and metrics

Keynote  Systems is a supplier of software and services for measuring and managing the responsiveness of web-based applications. KeyNote RedAlert is aWeb site monitoring service that can perform end-to-end checks of your a site every 5 or 15 minutes. It can also monitor DNS, email, news & telnet servers.

MeterWare  for Windows 95/NT & UNIX from Technically Elite. Metrica Network Performance Reporting (NPR)  is a performance monitoring toolset being used by telecoms

operators to manage the quality of service and the capacity of their networks. NATManager . NEPM (Network Equipment Performance Monitor  is a two part software system that captures and analyzes

logged performance data from IP networked equipment and reports it via e-mail and web pages. It can be hosted on either a Unix or WinNT system or a combination of these.

Network Security Monitoring Toolso GFI LANguard  network vulnerability scanning, patch management and auditing solution.o Lan-Secure  Security Center: Network security monitoring software that provides real-time intrusion

detection and prevention by enforcing network policy organization rules and online network users activity management.

o Net Detective  iPhone application Using low level techniques common to NMap and other powerful network auditing tools, NetDetective will expose open TCP ports, UDP ports, and UPnP/Bonjour services running on your network.

o Network Enforcer  Network security software that monitors user behaviors using security filters.o Nsauditor  is a network security scanner that allows to audit and monitor network for possible

vulnerabilities,checks methods that a hacker might use to attack it. Over 45 network tools for monitoring, scanning, sniffing, enumerating and gaining access to machines (access to secured shares and confidential files, also detects and logs network access to shared folders).

o QRadar  isolates the source and identifies corrective measures for dangers hiding in daily network activity.o Sentinel  analyzes an up-to-date model of the production network to perform automated and systematic

configuration audits and diagnose device misconfigurations, policy violations, inefficiencies, and security breaches.

o System Shepherd  delivers end-to-end application visibility (from end-user experience to network to application internals). It is provided as a software service that can optionally be coupled with managed

services. The level of optional management is flexible. It can range from Managed Alerting to multi-dimensional SLA-based application management.

o Techout  helps companies measure and optimize the speed and availability of critical online applications, from establishing performance objectives to maintaining peak performance, Techout helps companies measure and optimize the speed and availability of critical online applications.

o WFilter  is an Internet filtering software that can help organizations to monitor and manage all Internet behaviors on their networks. You only need to install WFilter in one computer to monitor your whole network.

o ZoneRanger  from Tavve is a secure network management proxy appliance for the DMZ; it proxies SNMP GET/SET, SNMP Traps, syslog, NetFlow, sFlow, IP status, and TCP port status, delivering the proxied traffic to a network management platform or tool.

Network Tools  has a suite of online IP and DNS tools that can be run both locally and remotely to check for any Network Errors.

Net-One-1 , monitors your company's network devices 24 hours a day, seven days a week. NetOps  provides a set of tools for monitoring, logging and reporting network status, focussing on preventive

maintenance. NetReality  provides monitoring and QoS shaping on all OSI layers, from 1 - 7 on WAN links. Real-time and

historical reports are provided. NetScout  Drawing on information generated by NetScout's application-aware probes, intelligent active agents

and data collected directly from network devices strategically placed throughout the WAN, SAN, and LAN, the nGenius Performance Management System monitors, troubleshoots, performs capacity planning and reports on the application traffic flowing across the network.

NextPoint S3 provides the ability t define, measure, baseline and report on service levels at many levels from the core network to end user applications.

PingGraph  is a multi-threaded graphical TCP/IP network monitoring and diagnostic tool for Windows 95 and NT.

ResponseNetworks  provides tools for network service level monitoring and measurements. SAA  Service Assurance Agent built into Cisco IOS release 12.0(5)T allows measuring response time, net

resources, availability, jitter, connect time, packet loss and application performance.

SftpDrive  Maps any SSH server as a Windows network drive. Provides transparent and secure integration of the remote filesystem into Windows without requiring additional server software or configuration.

Silverback's  InfoCare delivers real-time and historical information on faults, assets, performance and security across networks, systems and applications through a unified Web-based interface.

SNMP Tools:o AdventNet SNMP API  can be used to build system management, application management and network

management applications and applets. It includes class libraries and Java beans for Java SNMP development, as well as a complete MibBrowser for interacting with SNMP enabled devices. The AdventNet Agent Toolkit Java Edition provides a complete GUI-based development environment to build standalone SNMP agents, Multi-Protocol agents, and standalone TL1 agents. Also see AdventNet ManageEngine JMX Studio a 100% Java-based development environment that provides Java, J2EE, and EAI middleware application developers, the ability to build JMX and SNMP-based manageability for their applications. It also comes with options for other protocol adaptors like HTML, RMI, CORBA, SOAP, and AMI adaptor for plugging into different types of management consoles.

o Denika  Performance Trender is a trending tool that collects and graphs SNMP details for interface utilization, CPU, Memory, Disk Space, Frame Relay, Database Resources, QoS, Port Errors etc.

o LoriotPro  a generic SNMP managero MIW  Multiple Interface Watcher is a graph utility that shows the utilisation of up to 20 different

interfaces. The data is requested from the devices using SNMP. MIW is an advanced development ofInterface Traffic Indicator that focuses more on the utilization overview of many interfaces than on much information of one interface.

o OidView  is a modular network management analysis tool that uses the SNMP protocol to talk to various agents and devices on a computer network, offering a variety of plug-in modules like a MIB Browser, MIB Manager, Trap Manager, PDU Capture, etc.

o NetVoyant  Provides SNMP-based performance metrics for managing network infrastructure, devices, and services

o Open NerveCenter  is a network management platform, based on SNMP, that is extensible using PERL. NerveCenter correlates events in real time from network and security devices, UNIX and NT systems and applications to improve availability, performance and security.

o OPENXTRA  has a set of SNMP utilities.

o SNMP Explorer  provides a tree view of your SNMP managable devices, provides a way to talk to or from the devices, provides a flexible log of transactions, and permits you to transact with the devices with simple yet powerful scripts.

o SNMP Informant  is installed on Windows hosts to enable them to provide SNMP information.o SNMP Research o SNMP Sweep  Engineer's Toolset queries an IP address range to determine which IP addresses are used

and which are unused.o TrapBlaster  SNMP trap management engine that receives, filters and converts SNMP traps. They may

then be forwarded to your network management applications.o Unbrowse  SNMP. A visual SNMP MIB browser, compiler, walker.o XRate1  SNMP based network monitoring with statistical tags and OPC Server available.

StatScope  from IP Sciences is an outsourced service providing a customized IP network monitoring and reporting capability.

TelAlert from CalAmp  a package for enunciating alerts and managing via pagers, email, pop up windows etc. Third Watch  Server Monitor will allow you to monitor all of your critical servers and services on an IP network

and be notified of any changes in their status. It is a server monitoring program using TCP/IP. It can monitor via Ping, HTTP, FTP or any other TCP/IP port.

Topology/Traceroute based toolso EdgeScape  from Akamai, maps user IP addresses to their geographic and network point of origin. This

information is assembled into a vast knowledge base and made available to Edgescape customers.o GeoBoy  Allows you to view traces on a flat map or 3D globe. Incorporate geographical features such as

cities, rivers, and political boundaries. Zoom in on areas of interest. Save and restore trace data. Rotate and manipulate maps. Update and customize geographical location cache files.

o NeoTrace  provides graphical traceroute information.o PingPlotter  is an enhanced traceroute program for Windows 95/98/NT/W2K/XP.o Route Explorer  provides visibility, analysis and diagnosis of IP networks from a routing point of viewo SMARTHawk  from Solana Networks is an IP network monitoring and diagnostics tool focused on

topology, routing and qoso VisualRoute  a GUI based traceroute for Windows.

Triticom  has software based network protocol analyzers, LAN traffic monitors, RMON probes, and an SNMP manager.

View2000  runs under Windows NT and has the ability to monitor multi-vendor network equipment configurations, using flat file databases for speed and Oracle RDBMS for SQL report queries, and NOT using SNMP.

Viola Networks  provides NetAlly and other tools that include a suite of tests to provide "true" Service Level Management (SLM), the ability to audit policies and Quality of Service (QoS), and automatically conduct preventive maintenance tests to discover hidden problems in the network.

VisualPulse  from DataMetrics provide realtime and historical reports on RTT & loss. VoIP (Voice over IP)

o ACE Live VoIP Monitoring  module supplies real-time and historical data in a business context including both application performance and call quality.

o AppNeta  Uses standard protocols (ICMP and/or UDP) to transmit small packet configurations across the actual path the application takes. These packets vary in size, pattern, and spacing to fully characterize the network path. Detects signatures used to identify the likely cause of the problem, including MTU mismatch, QoS mismatch, duplex mismatch, media errors, path congestion, excessive packet reordering, etc.

o Nectar Services  Converged Management Platform (CMP) provides comprehensive VoIP monitoring and management solutions including QoS Voice Quality Management, tailored for Avaya and Cisco Unified Communications and Contact Centers.

o NetQuest  from Tekno Telecom non-intrusively monitors converged wireline, wireless and next-generation networks (including SS7, SIP, Sigtran, H.248, IMS, 4G and LTE) deriving business intelligence and generating network call/session detail records for Troubleshooting, Call Trace, Protocol Analysis, Quality of Service, Inter-Carrier Billing, Fraud Prevention, Revenue Assurance, Roamer Analysis, Surveillance, Billing Verification, and Alarming.

o netrounds  is a cloud-based solution using distributed active measurement probes which are easily downloaded and deployed on PC hardware. It supports concurrent monitoring of SIP signalling perfomance and ongoing call quality, as well as live IPTV MPEG monitoring in combination of flexible TCP/UDP traffic generation up to 10 Gbit/s.

o Prognosis  provides systems management software for performance monitoring of IP telephony, VOIP, availability, network management, Windows, UNIX and Linux.

o SevOne VoIP  Telephony Monitoring, enables organizations to monitor the quality of experience for their VoIP applications from the same system and web-based console that they use to manage their network performance and availability. All of the SevOne capabilities for polling, monitoring, alerting and reporting are available for VoIP call quality metrics.

o Telchemy  provides Voice over IP (VoIP) passive call quality monitoring and active Quality of Service (QoS) management. Designed specifically to be embedded into VoIP end-systems, management devices and DSPs, Telchemy's non-intrusive monitoring technology, VQmonTM, is the only technology to model time-varying impairments and their effects on end-user-perceived quality in real-time.

o ZTI  provide LANTraffic V2 and IP Traffic Test & Measure software testing tools for automatic generation of TCP and UDP traffic.

Video over IPo CertUs Digital  FaultLine (windows software) monitors, in real-time, ethernet MPEG-2 Transport Streams

and provides QoE/QoS (ETSI TR 101 290) statistics for Video-over-IP, IPTV and VOD. A free unlimited use run-from-pcap version is also available.

Public Domain or Free Network Monitoring Tools [Contents]

Application Monitoring | BGP | Finger Printing | Flow Monitoring | FTP | Host based network monitoring tools | IP Address management (IPAM) | Mapping | Monitoring Infrastructures | Network Security |Packet Capture/Analysis Tools | Path Characterization | Ping | RRDtool | SNMP | Throughput tools | Traceroute

ANL Web100 based Network Configuration Tester  tests the reliablity and operational status of your network link.

Application Monitoringo Alvias  provides free monitoring of HTTP, TCP/IP port, ping, SMTP, POP# FTP, web page defacements

from multiple networks around the world.o H.323 Beacon  is a tool that can be used to measure, qualify and troubleshoot performance of H.323

Videoconference sessions both at the network and host levels (end-to-end)

o MossHe  (Monitoring with SSH Environment) is a simple, lightweight (both in size and system requirements) server monitoring package designed for secure and in-depth monitoring of a handful of typical/critical internet systems.

o Munin  monitoring tool surveys all your computers and remembers what it saw. It presents all the information in graphs through a web interface. Its emphasis is on plug and play capabilities. After completing a installation a high number of monitoring plugins will be playing with no more effort.

o OpenSMART  (Open Source|System Monitoring and Reporting Tool) is a tool to monitor applications with an agent per host. These agents report all there results to a central monitoring console for displaying and alerting. OpenSMART agents can fix some errors (like not running processes) on their own and OpenSMART knows about conditional monitoring (e.g. in a cluster: An application will be monitored only, when the file system is available on this cluster node, too).

o Serio IT Service View  is a free monitoring tool for servers and network devices. It includes standard plugins for monitoring Windows Servers, Linux Servers, Exchange servers, 'pingable' devices, log files, Oracle databases, web and web page content monitoring. It can respond to SNMP Traps, and includes its own mib compiler and scripting language for creating your own plugins. WMI integration allows rebooting of Windows servers, restarting services, etc. Realtime graphs and web page status pages included.

o SpiceWorks  is a browser-based desktop that lets you: inventory hardware, software and patches on your network; monitor your network for new software, low disk space, offline servers and rogue users; report on the information you need to manage your network.

o System and Network Monitor (SNM)  is a tool to monitor, graph and alert on computing devices and services. SNM runs on a Windows or Linux device on your network, 24 hours every day. The recorded data is accessed via a user friendly menu-driven web browser, e-mail alerts are raised if a user determined threshold fails. Sysmon is a network monitoring tool designed to provide high performance and accurate network monitoring of various application protocols. Currently supported protocols include SMTP, IMAP, HTTP, TCP, UDP, NNTP, and PING tests.

o XYMON  (used to be HobbitMon) monitors hosts, network services, and anything else you configure it to do via extensions. Hobbit will periodically generate requests to network services - http, ftp, smtp and so on - and record if the service is responding as expected. Through the use of agents installed on the servers, you can also monitor local disk utilisation, logfiles and processes.

aslookup  tool searches the sequence of AS number specified with the parameter from IRR and indicates the first line of Description of AS Object.

arpwatch , if this link fails then you can FTP it from ftp://ftp.ee.lbl.gov/arpwatch.tar.Z (since this is the master repository it may also be a more recent version than the one above).

BGPo Argus  monitors the Internet and discovers anomaly BGP updates caused by prefix hacking and adverises

via the web site. See also the paper and about argus.o BGPlay  a web based service, freely available to the community since 2004, which allows graphical

inspection of interdomain routing evolution using public BGP data collected by www.routeviews.org and by www.ris.ripe.net.

o BGPmon  can monitor your prefixes and alert you in case of a 'interesting' path change. Recently this has received quite some attention. Specifically after the Youtube hijack and the demo given at defcon.

o Cyclops  a watchdog for prefix hijack and the Border Gateway Protocol.o iBGPlay  based on the same visualization technology of BGPlay it is designed to inspect the interdomain

routing evolution using private BGP data collected from ISP's routers. iBGPlay can show the outgoing traffic paths for all internet destinations and is especially suited for content providers. Subscription to iBGPlay is free.

o LinkRank  BGP dynamics visualization tool "LinkRank" also presented at Nanog 32 at Reston, VA (http://www.nanog.org/mtg-0410/lad.html).

FDBGet  This little gadget will try to retrieve the forwarding table entries (Mac to interface number) of switches (layer 2 devices). This comes in handy when you want to know to which interface of a switch a particular NIC (e.g. computer) is attached to. Now suppports parameters for command line use.

Dig D-ITG  (Distributed Internet Traffic Generator) is a platform (collection of tools) capable of producing traffic

(network, transport and application layer) and of accurately replicating appropriate stochastic processes for both IDT (Inter Departure Time) and PS (Packet Size) random variables (exponential, uniform, cauchy, normal, pareto, ...).

Dummmynet  A FreeBSD system for emulating the effects of bandwidth limitations, propagation delays, bounded-size queues, and packet losses.

FingerPrinting

o NetworkActive Port Scanner  a network scanning tool that can perform UDP and TCP port scans and subnet scans, whois, DNS-dig, ping, protocol scans, and TCP/IP stack fingerprinting.

o Nmap  is a utility for port scanning of large networks, although it works fine for single hosts. OPENXTRA has a version (NMapWin) for Windows.

o TBIT  TCP Behavior Inference Toolo sscan  performs probes against victim hosts to identify services which may potentially be vulnerable to

exploitation. Flow Monitoring

o Argus  the network Audit Record Generation and Utilization System. The Argus Open Project is focused on developing network activity audit strategies that can do real work for the network architect, administrator and network user. It is a Unix based Real Time Flow Monitor designed to track and report on the status and performance of all network transactions seen in a data network traffic stream.

o ASDIC  is a system for advanced firewall log and traffic analysis in large TCP/IP networks.o Cflowd  is an experimental tool to collect data from Cisco's netflow export feature.o Nett::Flow  is a Perl CPAN module to decode and encode NetFlow/IPFIX datagrams.o Netflow Monitor  is tool with a nice web interface for processing and evaluating NetFlow Exports from

CISCO routers.o NFDUMP  tools collect and process netflow data on the command line. They are part of the NfSen project.

The goal of the design is to able to analyze netflow data from the past as well as to track interesting traffic patterns continuously. The amount of time back in the past is limited only by the disk space available for all the netflow data. The tools are optimized for speed for efficient filtering. The filter rules look familiar to the syntax of tcpdump (pcap like).

o NfSen  A graphical web based front end for the nfdump netflow tools that allows you to: dDisplay your netflow data: Flows, Packets and Bytes using RRD (Round Robin Database); navigate through the netflow data; process the netflow data within the specified time span; create history as well as continuous profiles; set alerts, based on various conditions; write your own plugins to process netflow data on a regular interval.

o Qosmet  enables real-time passive QoS monitoring of IP application flows + also QoE evaluation for trained applications. Qosmet supports Windows, Linux, and Android and runs as a light-weight SW Service, being controllable from third party SW via a special protocol library.

FTP  is the standard File Transfer Protocol. See also Commercial FTP tools.o Autobuf  is an auto tuning-enabled FTP client and server. The client, a modification of the NcFTP Client,

enables Auto Tuning to calculate optimal window sizes before files are transferred. The client is compatible with most other FTP servers. The server, a modification of the WuFtp FTP server, allows connecting clients to reset its buffer size dynamically by using a SITE option.

o bbcp  a secure peer to peer file copy program supporting large windows and multiple streams. See also the presentation and the PDF paper.

o bbftp  is designed to quickly transfer files across a wide area network. The package comprises of a server and clients. It also provides compression and secures the transmission of the username and password by using the cryptolib of the OpenSSL project.

o BitTorrent  an aggressive peer-to-peer file transfer protocol/implementation.o Firehose  firehose uses multiple interfaces to stripe a bulk data transfer (it's geared towards files, the home-

grown protocol includes sending a filename and the client requires a file) over multiple network interfaces.

o GSIFTP  is an ftp client and server with built in kerberos and GSI (globus) security, and also allows you to set the TCP buffers on both the client and server.

o HPN-SSH  provides a patch to remove the performance bottlenecks in OpenSSH.o SafeTP  operates by installing a transparent proxy in the Windows networking stack which detects

outgoing FTP connections from any Windows FTP client, and silently secures them using modern cryptographic techniques.

o NcFTP  has a popular free FTP client that adds support for firewalls, intelligent ls caching, background and scheduled processing, and Microsoft Windows.

o RFT  Reliable File Transfer Service is a service that allows byte streams to be transferred in a reliable manner. Reliability, in this context, means that problems of less than a certain, user defined magnitude are dealt with automatically. i.e. problems like dropped connections, machine reboots, temporary network outages, etc are dealt with automatically (usually via retry) until they either resume or meet some "ultimate failure" condition

o vsFTP  Re-engineered ftpd server with modern security and performance integrated. Accounts easily isolated using integrated chroot() based configurations, significant reporting facilities, performs well under high loads.

o WU-FTPD  is a popular FTP server from Washington University. Host based network monitoring tools

o Collectl  is a lightweight tool that can monitor network and other traffic and provide a consistent, integrated view of what the system is doing. It can run as a daemon, maintaining a set of rolling logs and optionally can write them in a format plottable by gnuplot or loadable into Excel.

o Etherape  is a graphical network monitor for Unix modeled after etherman. Featuring link layer, ip and TCP modes, it displays network activity graphically. Hosts and links change in size with traffic. Color coded protocols display.

o Ethergrouik  is a free opensource easy-to-use software that enables you to monitor your network activity (like Etherape) for Windows.

o Fing  is a freeware tool for the discovery and scan of local and remote networks. Using adapting techniques, it can discover and scan large networks in short times. It runs on Windows, Linux and Mac OS X.

o IPTraf  is a console-based network statistics utility for Linux. It gathers a variety of figures such as TCP connection packet and byte counts, interface statistics and activity indicators, TCP/UDP traffic breakdowns, and LAN station packet and byte counts.

o Ntop  is a Unix tool that shows the network usage, similar to the popular top Unix command.o PacketTrap  is a free network monitoring tool suite including; TFTP, ping scan, traceroute, and port scan.o Pktstat  a real-time list of active connections seen on a network interface, and how much bandwidth is

being used by what. Partially decodes HTTP and FTP protocols to show what filename is being transferred. X11 application names are also shown. Entries hang around on the screen for a few seconds so you can see what just happened. Also accepts filter expressions � la tcpdump.

Internet Detective  is a small Windows application that offers computer users easy access to the status and capabilities of their current network connection by providing information about advanced network capabilities, including connectivity to an Internet2 backbone network, an estimate of available bandwidth and multicast capabilities.

IP Address Management (IPAM)o NetDB  is a Network Tracking Database providing a highly scalable program using SSH/telnet that keeps

track of all ARP and mac-address tables across your routers and switches, with many features to ease

network management. You can map devices to your switch ports, locate all ports configured for a VLAN and track all of this information over time.

o Netdisco  is an Open Source web-based network management tool. Designed for moderate to large networks, configuration information and connection data for network devices are retrieved by SNMP. With Netdisco you can locate the switch port of an end-user system by IP or MAC address. Data is stored using a SQL database for scalability and speed. It also provide optional use of the Cisco Discovery Protocol (CDP).

Lachesis  a tool from Intel to monitor and report on response time and packet loss to "landmark" Internet sites. Mapping tools

o GeoPlot  is a light-weight java applet which allows users to create a geographical image of a data set.o Mapnet  from NLANR/CAIDA is a tool for visualizing the infrastructure of multiple backbone providers

simultaneously (Mapnet), and for updating and correcting information that may be invalid or out of date (Mapnet Update)

o NetGeo  is a database and collection of Perl scripts used to map IP addresses, domain names and AS numbers to geographical locations.

o Network Weathermap  provides useful tools for reporting/visualisation of a network's flows generally. Monitoring Infrastructures (also see Comparison of Some Internet Active E2E Measurement Infrastructures)

o Cheops  is an Open Source Network User Interface designed to unify your network utilities.o EDDIE  is a system monitoring, security and performance analysis agent developed entirely in Python. Its

key features are portability, powerful configuration and ease of expansion.o GNMS  is a GPL Network Management System, a graphical tool used to monitor state of network

elements. Montoring can be done in multiple ways using service discovery, snmp, wmi and custom plugins, moreover syslog and snmp traps can be caught too.

o Ganglia  is a scalable distributed monitoring system for high-performance computing systems such as clusters and Grids.

o GNetWatch  is a mature free open source Java application that offers real-time graphical monitoring and analysis of network performance (using traffic generators and SNMP probes). The main advantage of GNetWatch is that it can monitor events (like throughput) that change for instance every second : the user can see a dynamic graphical window.

o GroundWork  Monitor Open Source combines open source projects like Nagios, Nmap, Sendpage, MySQL, etc with custom dashboards in one software package for monitoring a range of platforms - Linux, Unix, Windows - & network devices.

o Hyperic HQ  Open Source systems management software designed to monitor, analyze and control performance and availability of web infrastructure including hosts, virtualized guests, services, applications and networks through an easy to use portal and extensible plugin architecture.

o Mon  is a general-purpose resource monitoring system, which can be used to monitor network service availability, server problems, environmental conditions such as the temperature in a room, or any number of things.

o Nagios  (used to be NetSaint) is an open source host, service and network monitoring program. It is designed to run under Linux, although it should work under most other *NIX variants. It can run either as a normal process or as a daemon, intermittently running checks on various services that you specify. The actual service checks are performed by external "plugins" which return service information to Nagios. Several CGI programs are included with Nagios in order to allow you to view the current service status, history, etc. via a web browser.

o NetMeter  This application allows you to seamlessly monitor your online activity in terms of traffic speed. The main window of the program is minimalistic and contains a graph that shows the on-going traffic in your network. The download speed appears in red, while the upload speed appears in green. You can also view the maximum accepted speed.

o Network Performance Advisor  is a single application which integrates the measuring, analyzing, and displaying of network performance statistics.

o Network Status Notifier  is a tool for monitoring and logging network status (links,routes, addresses, neighbours...) and executing scripts upon state changes.

o Osmius  is a system, application and service monitoring tool with availability and SLA tracking.o OSSMON  is a web-based monitoring package based on OSSWEB application framework. It supports

SNMP monitoring as well as specific services like POP3, SMTP, Ping.o Performance Co-Pilot  from SGI allows one to measure, visualize, record, and/or respond to the status,

activity, and performance of systems, networks, applications, and servers. PCP is open source and runs on Windows, Mac OS X, and most Unix/Linux variants.

o PingER  End-to-end active measurement using ping to monitor end-to-end performance of Internet links.

o Polymon  is a free Windows/SQL based network/system monitoring solution that has flexible alerting capabilities as well as historical analysis of uptime and all counters and monitor statuses for a variety of monitors such as ping, snmp, Windows performance monitors, SQL, etc.

o SCAMPI  SCAMPI is a platform for passive monitoring. It can use several different hardware monitoring adapters (SCAMPI adapters developed in the project, DAG cards produced by Endace and regular NIC cards). It provides MAPI (Monitoring API) as a high-level abstraction of passive monitoring for easy creation of portable monitoring applications.

o Scriptroute  is a flexible network measurement and debugging system. Measurements are expressed as scripts that run as an ordinary user, and a priviledged daemon schedules and manages the packet exchange. The goal is to allow any user to connect to any server and execute any safe network measurement.

o Simple Infrastructure Capacity Monitor (SICMD)  is a tool to monitor, graph and alert the capacity of computing devices. SICM runs on a Windows or Linux device on your network, 24 hours every day. The recorded data is accessed via a user friendly menu-driven web browser. E-mail alerts are raised if a user determined number of queries fail.

o skipole-monitor  allows the user to input host IP addresses, it then pings these hosts every five minutes and displays their status via a built-in web server, on port 8000. It can optionally send email alerts if the hosts change status.

o Total Network Monitor  is an application which can be installed on a server and runs 24/7, constantly monitoring your network computers, servers, ports and services and alerting administrators about arising problems by e-mail, jabber, ICQ etc.

o Zenoss  is an integrated, easy-to-use IT infrastructure monitoring software product produced by the Open Source Community.

mrtg  Multi Router Traffic Grapher. Also available from OPENXTRA. mrtg-ping-probe  is a ping probe for MRTG. It is used to monitor the round trip time and packet loss to

networked devices. MRTG uses its output to generate graphs visualizing minimum and maximum round trip times or packet loss.

NetLogger  tools to make it easy to instrument distributed applications and visualize the results. Network Security

o CERT NetSA Security Suite  The Network Situational Awareness (NetSA) group at CERT has developed and maintains a suite of open source tools for monitoring large-scale networks using flow data. These tools have grown out of the work of the AirCERT project, the SiLK project and the effort to integrate this work into a unified, standards-compliant flow collection and analysis platform.

netstat  a built in Unix and Windows command line utility to display active network connections. NetStat Live  is a small, easy to use TCP/IP protocol monitor which can be used to see your exact throughput on

both incoming and outgoing data. NetTest  Nettest is a secure, real-time network monitoring utility. The nettest framework is designed to

incorporate existing and new network tests, and be run as a daemon or an interactive process. Requests for network tests are received via a SSL connection or the user interface and are authorized using an ACL list (in the future authorization using Akenti will also be supported).

Network Diagnostic Tool  (NDT) a web100 Java applet developed to test the reliablity and operational status of your desktop computer and network connection.

NPAD  (Network Path and Application Diagnosis) is designed to diagnose network performance problems in your end-system (the machine your browser is running on) or the network between it and your nearest NPAD server. For each diagnosed problem, the server prescribes corrective actions with instructions suitable for non-experts.

ns  network simulator is a discrete event simulator targeted at networking research. NIST Net  allows a single Linux PC set up as a router to emulate a wide variety of network conditions. NOCOL nslookup OWAMP  One Way Active Measurement Program from Internet 2. provides one way delay measurements. Packet capture/analysis tools. (see also commercial capture tools) Before using these tools on your site you

should check with your network security people.o Analyzer  is a fully configurable analyzer program. It was developed in Win32 environment. It can be used

with both Windows 95/98 and Windows NT/2000 platforms. It is composed by three parts: a graphical interface, an analysis engine and a capture program.

o Bro intrusion detection system  contains a number of protocol analyzers that can munch on tcpdump traces (or live traffic, of course) and extract high-level application events from the reassembled TCP/UDP streams.

o Crypto-PAn  is a cyrptography-based sanitization tool for network trace owners to anonymize the IP addresses in their traces in a prefix-preserving manner.

o Ethereal/Wireshark  is a free network protocol analyzer for Unix and Windows (including Win2K). It allows you to examine data from live network or from a capture file on disk. Also Packetyzerprovides a Packetyzer new Windows User Interface that will available under the terms of the GNU Public License. Also see the Cascase Pilot Personal edition provides extra facilities to Wireshark.

o Darkstat  a packet sniffer that runs as a background process on a cable/DSL router, gathers all sorts of statistics about network usage, and serves them over HTTP.

o IPAudit  captures packets in promiscuous mode and is often used for intrusions detection.o Jnettop  Jnettop is a traffic visualiser, which captures traffic going through the host it is running from and

displays streams sorted by bandwidth they use.o Justsniffer  is a tcp packet sniffer. It captures reassembles and reorders TCP packets, performs IP packet

defragmentation and displays the tcp flow and trace timings. It is useful for logging network traffic in a 'standard' (web server like) or in a customized way. It can log http response time, useful for tracking network services performances (e.g. web server, application server, etc.) .

o Microsoft Network Monitor  is a free protocol analyzer for Windows. It lets you capture and view live network data and view traces in .CAP, .PCAP, and .ETL file formats. It is capable of analyzing hundreds of protocols including Windows and SQL protocols as described from MSDN. Parsers are updated regularly in the open source on CodePlex. There are also a variety of open source analysis add-ons. More information can be found at the tool's blog.

o NetFort SPAN Port Configurator  A Windows application that gives you an easy way to configure SPAN ports on Cisco switches quickly and remotely.

o NetworkMiner  is a passive network sniffer/packet capturing tool for Windows. NetworkMiner can detect OS's, hostnames, open ports, sessions and extract files without putting traffic on the network. NetworkMiner can also parse PCAP files for offline forensic analysis

o Network Timeout  Ntwork Packet Analyzer is an offline version of the real-time network and application traffic analyzer developed by ExtraHop Networks.

o PasTmon  is a passive network application response time monitor utilising packet capture (via libpcap), tracking sessions maintaining transaction state and collecting metrics of server/network response times, segment size negotiation and TCP window size advertisements.

o Plab  is a software platform for packet capture and analysis. It is capable to extract, either from live traffic or from file traces, Inter Packet Times (IPT) and Packet Sizes (PS) inside conversations between couples of hosts. Plab runs under Linux and FreeBSD. It tries to use as few processing resources as possible and it is capable of analyzing traffic traces of hundreds millions packets associated to millions of conversations.

o sniffit ,o Snoop  is similar to tcpdump and is bundled with the Sun/Solaris Unix operating system.o Snuffle  is a measurement tool for capturing the protocol messages, internal protocol states and to measure

implementation performance on networking nodes. Snuffle consists of a set of modules placed in the kernel, device driver and user space. Currently measuring probes for UDP, IP and IEEE 802.11b MAC are implemented.

o TansuTCP (TT)  is a TCP trace utility which listens on a local port and then forwards tcp packets to another server. You can see and save binary / text data to a file or you can load binary data from a file.

o Tcpdpriv  is a program for eliminating confidential information from packets collected on a network interface (or, from trace files created using the -w argument to tcpdump).

o tcpdump . There is also a version for Windows. tcpillust takes tcpdump file(s) specified at the command line and draws pictures like figures in the ``TCP/IP Illustrated'' series. You can see sample screen images of tcpillust or screen guide at http://www.jp.nishida.org/tcpillust/index.html.

o TCPurify  is a packet sniffer/capture program similar to tcpdump, but with much reduced functionality. What sets TCPurify apart from other, similar programs is its focus on privacy. TCPurify is designed from the ground up to protect the privacy of users on the sniffed network as much as possible.

o TCPshow  is a Unix based program that parses the output file of TCPdump into human readable text.o Tcptrace  is a TCP dump file analysis tool written by Shawn Ostermann at Ohio University.o trafd  is a traffic accounting daemon for Linux and FreeBSD, built on top of libpcap, with accompanying

tools to manage its data.o trafshow  continuously displays information regarding packet traffic on the configured network interface

that match the boolean expression.o Tstat  TCP statistic and analysis tool (Unix/Linux based) - allows collecting network performance indexes

from passive traffic analysis (i.e. packet traces), at both network (IP) layer, and at transport (TCP/UDP/RTP/RTCP) layer. It can be used to persistently monitor links, thanks to the integration with the RRD database.

o WinPcap  is an architecture for packet capture and network analysis for the Win32 platforms, based on the model of BPF and libpcap for UNIX. See also libcap for windows and libpcap for Unix.

Path Characterization & Bandwidth Estimationo ABwE  Available Bandwidth Estimator.o Bandwidth Estimation Tools  a compendium of tools maintained by Sally Floyd.o MTUPath  discovers one-way path MTU to a host(IPv4 and IPv6)o PathChirp o Pathload  measures the available bandwidth of a link.o Pathneck  is an active probing tool that can detect bottleneck location of network path. It only needs single

end control, and has relatively small probing overhead (33.6KB for one probing in the default setting).o Pathprobe  is a MIB tool that uses TCP and web100 to probe and characterize the path between two hosts.

The goal of this tool is to run hop-by-hop tests to determine if the paths along the way are capable of supporting the desired end-to-end target bandwidth between the sender and receiver.

o Pathrate  measures end-to-end capacityo Pchar  an independent implementation of Van Jacobsens pathchar with more intelligible output. Available

for FreeBSD, Solaris, Linux, IRIXo Pipechar  a tool for reporting dynamic network characteristics in particular the bottleneck bandwidth. It is

now part on the Network Characterization Service (NCS).o STAB  short for spatio-temporal available bandwidth estimator, locate congested links on an end-to-end

network path. Ping

o arping  is an ARP level ping utility. It's good for finding out if an IP is taken before you have routing to that subnet. It can also ping MAC addresses directly. It is pre-installed on some Linux installations, but requires sudo priviledges.

o fping  is similar to ping but is optimized to ping a large number of hosts in parallel.o Fpinger  Visualizes your computer network as an animated screen that lets you perform administration

functions, monitoring, pinging, scanning, exporting, looking for software and hardware over the network.o FREEping  will ping all your 2003-XP-2000-NT servers (or any other IP address) in free-definable

intervals. FREEping will send you a popup when one of the 2003-XP-2000-NT servers stops responding

o Just-ping  pings from 8 locations worldwide to a host you select.o MTR  (Matt's traceroute) combines the functionality of the 'traceroute' and 'ping' programs in a single

network diagnostic tool.o MultiPing Grapher  MultiPing Grapher is a further development of Perfping with the ability to graph up to

10 different ICMP results. Includes logging and average calculation.o pathping is built into Windows 2000, it pings all nodes along a route.o Perfping  a tool for testing availability, response times and performance using ICMP. Writes data to a text

file for later interpretation with e.g. Excel. Allows you to change IP address, ICMP timeout and data size during runtime. Comes with a nice little graph for realtime testing.

o Pingroute.pl  is a simple Perl script to ping all nodes along a traceroute and provide min, max, avg response time, plus packet loss analysis for 100 and 1400 byte packets. The source is freely available for SunOS, Solaris, Linux, AIX and Digital OSF1.

o Pingsweep  Widnows tool to enabls sweeping a subnet range by pinging each host address in the rangeo TCP based pings use TCP to figure out the Round Trip Time (RTT)

hping2  hping is a command-line oriented TCP/IP packet assembler/analyzer. The interface is inspired to the ping(8) unix command, but hping isn't only able to send ICMP echo requests. It supports TCP, UDP, ICMP and RAW-IP protocols, has a traceroute mode, the ability to send files between a covered channel, and many other features.

Tping  also can ping more than one host at a time.o TRIUMF's Visual Ping provides a Web page that the user can make ping transfer rate measurements

between the Web server and the browser.o hping2  is a network tool able to send custom ICMP/UDP/TCP packets and to display target replies like

ping do with ICMP replies. Qcheck  checks network response time, throughput, and streaming performance, by means of thin agents installed

on hosts that are to be checked. RANCID  monitors a router's (or device's) configuration, including software and hardware (cards, serial numbers,

etc), using CVS. Rancid logs into each of the devices in a router table file, runs various commands, chomps the output, and emails any differences ( sample) from the previous collection to a mail list.

Rider  measures available bandwidth, latency, and streaming performance (including noticing consecutive lost packets -- a key measure for VoIP) using lightweight performance agents that include a built-in web server.

Using a web browser for a GUI provides many extra useful features, such as the ability to save and print results, and the ability to bookmark tests (and even make a page of tests for your intranet.)

RRDtool  (Round Robin Database tool) is a system to store and display time-series data.o Cacti  is a complete network graphing solution designed to harness the power of RRDTool's data storage

and graphing functionality.o Cricket  is a high performance, flexible system for monitoring trends in time-series data. The collector runs

from cron every 5 minutes (by default), and stores data into a file-based database managed by the  RRD Tool. Later, when you want to check on the data you have collected, you can use a web-based interface to view graphs of the data.

o ElvinRRD  is a tool to provide a mechanism for transporting data across a network and storing it in RRD databases. ElvinRRD is written entirely in Python and works with (and requires) both Elvin and RRDtool. Any Elvin producer (client) can send data for ElvinRRD to store (e.g., EDDIE-Tool); and any RRD-aware software can process the resulting RRD databases (e.g., Cricket, Cacti).

o Host Grapher II  is a light program that uses RRD to draw graphics of Hosts for Network, Processes, CPU, Memory etc. Writing addicional plugins is quite simple. Works on all major UNIX platforms and on win32.

o NetMRG  is a tool for network monitoring, reporting, and graphing. Based on RRDTOOL, NetMRG is capable of creating graphs of any parameter of your network.

o NMIS  Network Management Information System is an SNMP polling and statistics viewer front-end to Tobi Oetiker's RRDTool.

o Orca  is a tool useful for plotting arbitrary data from text files onto a directory on a Web server.o remstats  Remstats is a system of programs to: gather data from servers and routers, store and maintain the

data for long periods, produce graphs and web-pages tieing them together, and monitor the data for anomalous behavious and issue alerts. This software is a pretty good hack to wrap around rrdtool as collector and presenter, easy to set up with not to much prerequesits. It only needs a some perlmodules and perl. Its under GPL and is able to maintain and monitor big environments.

o SmokePing  measures latency and packet loss in your network. Uses RRDtool to maintain a longterm datastore and to draw pretty graphs giving up to the minute information on the state of each network connection.

o Torrus  is designed to be the universal data series processing framework. Its has a scalable hierarchical design, with an application-independent core, and highly customizable architecture. Suitable for small installations and for big enterprise or carrier networks. Although most of our users deploy Torrus for SNMP monitoring, it might be useful for data series of any nature. Tobi Oetiker's RRDtool is used for data storage.

RouteViews  is a tool for Internet operators to obtain real-time information about the global routing system from the perspectives of several different backbones and locations around the Internet.

SNMP:

Analyse It is a shareware device poller that produces graphical performance reports for devices. You use it for trend analysis. The reports are in HTTP format for global organization view ability. Enables pro active network availability, performance, reliability and utilization reporting.

o CMU SNMP o EzMgt  MIB Browser is a free tool that includes a MIB Editor, SNMP Query View and SNMP Tracer

View.o Interface Traffic Indicator  Interface Traffic Indicator, a graph utility to measure incoming and outgoing

traffic on an interface in bits/sec, bytes/sec or utilization. Works on all SNMP-capable devices (computers, NICs, switches, routers, etc.) with adjustable poll interval down to three seconds. You can use this program in a professional network environment to monitor selected network interfaces (even backplane ports if the device provides the information) or you can monitor your home network or cable/modem/ISDN connection to the internet.

o Mibbrowser  Mibbrowser is a tool that retrieves all MIB data (OIDs and values) from SNMP-capable network devices. It can be used to find out what kind of MIB data is available from a device.

o STC  is a free command line tool to get and compare, side by side, SNMP tables entries from different computers. The output is always in XML format which is by default associated with a XSL script. So it can be processed later or immediately viewed with a WEB browser.

o UCD SNMP public domain tools

SolarWinds Free Tools  provides many free tools for everydays tasks performed by network professionals. Includes uploading/downloading executabe images to network devices, IP address tracking, syslog server, monitoring of some applications, netflow etc.

Spong  Son of Pong (spong) is a simple system monitoring package, that will monitor system attributes and network services on a variety of machines. It will gather status reports and contact staff if there are problems. It will also summarize the information and display it via a web interface

TCPtune  a TCP stack tuner for Windows telnet Thruput tools (also see the FTP tools):

o BWCTL  is a command line client application and a scheduling and policy daemon that wraps the throughput testing tools Iperf, Thrulay, and Nuttcp. These tests can measure maximum TCP bandwidth, with various tuning options available, or, by doing a UDP test, the delay, jitter, and datagram loss of a network

o bulk  is achievable performance measurement tool (iperf-like), which allows real-time monitoring of any socket options and their members, particularly TCP_INFO option, which provides useful clues for performance debugging. You can monitor rtt, cwnd, ssthresh, retransmits, etc. down to per sent segment, if you wish. The tool does not require root access or any kernel patch (even though it works with an accompanying AIMD patch for per-socket AIMD tuning).

o gen_send/gen_recv  a simple UDP trafic generator.o IPerf  is a tool for measuring maximum TCP and UDP bandwidth, reminiscent of tools such as ttcp. It has

been written to overcome the shortcomings of those aging tools. Jperf is a Java implementation.o netperf  maintained by HP, is a general measure of performance of a network. Provides a measure of

latency between request and response of generic transactions across a TCP/IP network.o Nuttcp  is a tool for measuring TCP achievable throughput.o RUDE  stands for Real-time UDP Data Emitter and CRUDE for Collector for RUDE. RUDE is a small

and flexible program that generates traffic to the network, which can be received and logged on the other side of the network with the CRUDE.

o Tcpspray  sends data to either the discard or echo TCP service on the specified host and prints the average throughput.

o thrulay  measures achievable UDP and TCP single stream throughputs (currently only supports Linux) also provides RTT estimates.

o TReno  a tool to function as a basis for a formal bulk transfer metric for the Internet.o ttcp

Traceroute (also see the Traceroute Servers web site, and commercial traceroute products)o where to get it , and traceroute servers.o Gtrace  is a traceroute visualization tool that uses a combination of methods to either determine or guess at

the physical location of a node in the traceroute path. It is flexible enough to support addition of new databases, heuristics to map IP addresses to physical location and maps.

o mturoute  is a small Windows tool to determine the path MTU between you and a specified host. In traceroute mode it will additionally show you the mtu at every hop between you and the specified host.

o NeoTrace  provides graphical traceroute information.o pathping a Windows NT utility to do a traceroute and then measure to each node along the route.o Prtraceroute  is a version of traceroute, from the RIPE Internet Routing Registry toolset, that presents

routing policy information together with the real time packet trace obtained from traceroute. It adds AS information to the normal traceroute output, making use of Routing Registry (RR) database information.

o Scamper  is a program that conducts traceroute to large numbers of IPv4 and IPv6 addresses in parallel to fill a specified packets-per-second rate.

o TCPtraceroute  uses TCP to a port at the end node to do a traceroute.o The tracepath for Linux is like traceroute but does not need superuser and has no fancy options. It does

discover the PMTU along the route.o Tracerou-nanog  has additional features like AS lookup, TOS support, microsecond timestamps, path MTU

discovery, parallel probing and others.o VisualRoute  a GUI based traceroute for Windows.

Zabbix  is software for application and network monitoring. Zabbix supports both polling and trapping techniques to collect data from monitored hosts. Flexible notification mechanism allows easy and quckly configure email notifications for pre-defined events.

Web Tools [Contents]

Benchmarkingo Cedexis Radar  is a free crowd-sourced community that provides visibility into the performance of public

and private Clouds, Datacenters & CDNs, from the perspective of real-end-users globally, so that enterprises can make informed purchasing and architecture decisions. Radar currently collects over 1 billion measurements a day of 32,000+ networks and all major Clouds and CDNs.

o WAPT  (Web Site APplication Testing) is a web load and stress testing tool that provides a way of testing web sites, web servers, and intranet applications with web interfaces.

o WCAT  is a Web Capacity Analysis Tool freely available from Microsoft.o WebStone  from MindCraft measures raw throughput of a standard HTTP workload.o Web Server Stress Tool  is a powerful HTTP client/server test application, designed to pinpoint critical

performance issues in your web site or web server that may prevent optimal experience for your site's visitors. Supports SSL.

o WWW performance monitoring Website Monitoring

o BasicState - is a free hosted service for monitoring the status of http servers. Subscribers can also add popular ecommerce partner sites to their alert specifications.

o EZ WebSite Monitoring  monitors uptime, response time/quality, history, popularity ranking, and tracking important changes.

o DownorNot  shows actual and past information about the uptime of (mainly) popular websiteso GotSiteMonitor  is an external website monitoring service that provides the user with five free website

monitors with 5-minute monitoring intervals. It also alerts the user through phone, sms, and email when there is a problem.

o hostUcan  Free monitoring of uptime and performance of a web site from multiple geographic locations.  is a web based tool for monitoring web sites and sending alerts on performance or downtime failures.

o Panopta  is a server monitoring service and outage management system for online businesses and service providers, providing the ability to detect outages immediately, then notify the right people about the outage, and finally, give a team the right tools to resolve the outage quickly.

o Pingdom  lets you monitor the uptime and response time of your web site or servers from several locations around the world. See your historical performance and make sure that you have a acceptable availability

so you are not loosing customers and visitors. You can also receive SMS and email notifications if any downtime occurs so you can fix any errors the minute they happen.

o RedAlert  is a Web site monitoring service that can perform end-to-end checks of your a site every 5 or 15 minutes. It can also monitor DNS, email, news & telnet servers.

o SITEImpulse  Website Monitoring providing 1 minute availability monitoring. It has 3 monitoring stations on different continents. Email, SMS and RSS alerts.

o WebMetrics  Globalwatch provides performance monitoring and metrics for a broad range of websites, internet applications and services. It provides the information for customer-centric decision-making for those providing web-enabled services.

o WebPerform  provides website performance monitoring and testing services from network locations in major cities across the globe. Drill-down object, host, and component level detail on test runs, reporting, and alerting help companies identify and resolve availability issues and performance problems.

o Website Monitoring  is a free website monitoring application released under the GPL that provides an uptime monitoring tool.

o WebWalk  is a proven dynamic feature that uses synthetic transactions to measure application performance from the end-user perspective.

o WebWatchBot  provides monitoring, notification, and analysis software for web sites and IP devices, providing email alerts, reporting and performance metrics.

Webalizer  is a fast, free web server log file analysis program. It produces highly detailed, easily configurable usage reports in HTML format, for viewing with a standard web browser.

Auxiliary Tools to Enable Monitoring, Analysis, Report Creation or Simulation [Contents]

AlarmTILT  allows notifification, warning and informing distributed groups of people. Telecom operator independent, AlarmTILT relies on multi-channel communication to dispatch two-way emails, two-way SMS text messages and two-way voice

Plotting toolso ChartDirector  a chart component control library for

ASP/COM/VB/.NET/PHP/Perl/Python/Ruby/ColFusion/C++o GDChart  Easy to use C, Perl, Python APIs, high performance library

to create charts and graphs in PNG, GIF and WBMP formato Gnuplot  a command-line driven interface function plotting utility.o Google Charts .

text-to-speech calls to PCs, mobile phones, landlines, PDA/Smartphones, Blackberries, Iphones and more. AlarmTILT provides special plugins for integration with Nagios and WhatsUp NMS systems and generic plugins for any other NMS able to generate an email alert or dump an alert to a file.

ghostscript GIF Manipulation and Animation

o Alchemy Mindwork's GIF Construction Set is a shareware tool for Windows.

o GIFBuilder  is freeware for the Mac.

o WhirlGIF  is a UNIX command-line utility to take a series of GIF files and output an animated GIF.

Mapping toolso Generic mapping Tools  is an

open source collection of ~60 tools for manipulating geographic and Cartesian data sets (including filtering, trend fitting, gridding, projecting, etc.) and producing Encapsulated PostScript File (EPS) illustrations ranging from simple x-y plots via contour maps to artificially illuminated surfaces and 3-D perspective views. GMT supports ~30 map

o Ploticus  non-interactive plotting package for Unix & Windows. Has mouseover and mouse click capabilities.

o Simile . Analysis & Visualization tools

o Analyse-it  is a software add-in for Microsoft Excel that includes over 30 parametric & non-parametric statistics, including descriptive statistics, box-whisker plots, correlation, multiple linear regression analysis, ANOVA, & chi-square statistics for general statistical research.

o Maple .o MatLab .o moodss  a graphical monitoring application. The core takes care of

managing modules (loading and unloading), displaying modules data through sortable tables and diverse graphical viewers, handling user set threshold conditions with email alerts, recording and browsing data history from a database. moodss can predict the future, using sophisticated statistical methods and artificial neural networks, and therefore be used for capacity planning.

o PV-Wave .o SAS .o S-Plus .

Simulation/Modelingo Network Simulator (ns) .o OPNET Modeler  OPNET Modeler uses discrete event simulation to

provide an environment for designing protocols and technologies, as well as testing and demonstrating designs in realistic scenarios.

o Xplot .

projections and transformations and comes with support data such as GSHHS coastlines, rivers, and political boundaries. GMT is developed and maintained by Paul Wessel and Walter H. F. Smith with help from a global set of volunteers, and is supported by the National Science Foundation. It is released under the GNU General Public License.

Alerting Toolso PagerDuty  PagerDuty collects

alerts from server monitoring tools, provides an overall view of all monitoring alarms, and alerts an on-duty engineer if there's a problem with comprehensive calendaring, escalation and alerting all in one.

Further Information [Contents]

7-Minute IT Manager's Guide to Network Visibility  series of podcasts from VSS Monitoring covers traffic visibility's role in network monitoring. Each segment tackles a different application area or technical topic, e.g., video monitoring, cell network visibility, traffic load balancing to the monitoring devices, configuring traffic capture filters, intrusion detection and prevention, etc.

CAIDA Masurement Tool Taxonomy  provides a preliminary overview of Internet and TCP/IP performance measurement tools and efforts and distinguishes tools used to measure the Internet from general TCP/IP performance tools.

Gigamon University  provides podcasts of passive monitoring for protocol analysis, RMON probe, network troubleshooting, application performance, web experience management, network and application discovery, network security, intrusion detection, access control, Sarbanes-Oxley, HIPAA and PCI compliance auditing, forensics and packet capturing and storage, deep packet inspection, VoIP analysis and IPTV service assurance, etc.

GroundWork  open platform for network, application, and cloud monitoring, for heterogeneous operating systems NetworkBones  a Search Tool for Computer Network Software. Network Monitoring Tools  an introduction to network monitoring. Network Monitor Software  a collection of tools and software for network monitoring, reporting, troubleshooting

and management. Network Performance Measurement Tools: An Internet2 Cookbook Computing Vendors Online . LBNL's Network Research Group  Includes links to lots of their documents and tools. Internet Tools

is a compact, comprehensive, carefully organized set of links to essential Internet sites about Internet-based tools for information, interaction, and communication.

LoveMyTool  gives customer testimonials and expert reviews of their favoriate "out-of-band" networkk security and performance monitoring tools.

Malware Analysis: Tools of the Trade Netspec  a Network Performance Evaluation and Experimentation Tool from the University of Kansas. Network-Automation  mailing list is for discussions of issues related to automating network configuration and

management, including (but not limited to) methods, mechanisms, techniques, philosophies, policies, and products (in general; questions about specific products should be directed to the mailing list dedicated to that particular product).

Network Management Tutorial  NetworkManagementSoftwrae has some thorough overviews and config tips for the latest releases of a lot of the monitoring tools on the SLAC list.

Network Performance Daily  is blog that includes free network monitoring Tools, How-Tos, and a handy Google calendar of events that typically spike enterprise network traffic.

NLANR Advanced Applications Database  is an online resource that provides access to information about networked research and education projects, applications, and resources that are related. You can view information about the more than 2,400 projects entered in the AAD by using keyword searches or preformatted reports.

Routing Arbiter  ToolSet ServerFiles.com  is a software directory for network administrators and IT professionals that are looking for

networking & server software for Windows 2003, Windows 2000 or Windows NT. Terena Guide to network resource Tools  a guide to network tools and innovation for users of all levels of

expertise. TruePath  will work with your teams to define what monitoring software packages (if any) are needed. They then

configure and maintain the monitoring tools and your teams use them. Tutorial on Internet Monitoring & PingER . WebAttack  a large collection of Internet Tools. WindowsNetworking.com  provides tutorials on various Windows networking related topics such as setting up

Windows NT/XP/2000/2003 networks, troubleshooting, connectivity and more. Also includes a comprehensive archive of reviewed networking software.

The X Consortium's Anonymous FTP Archive .

[Contents] * Disclaimer: Reference herein to any specific commercial products, process, or service by trade name, trademark, manufacturer, or otherwise, does not necessarily constitute or imply its endorsement, recommendation, or favoring by SLAC, Stanford University or the United States Government. The views and opinions of authors expressed herein do not necessarily state or reflect those of SLAC, Stanford University or the United States Government, and shall not be used for advertising or product endorsement purposes.