New modular design of GIXflow
A flowchart draft representing the planned modular design of GIXflow. Read more here.
A flowchart draft representing the planned modular design of GIXflow. Read more here.
Real-time stats and a few more features have been added to GIXflow. Added real-time stats include: – total volume of TCP/UDP/ICMP/IPv6/OTHER traffic – packet rate for TCP/UDP/ICMP/IPv6/OTHER traffic – received and processed packets – received and processed flows – prefix cache size – flow queue size – sent DNS queries The realtime stats use Highcharts charting…
Several features have been implemented to GIXflow: – Processing NetFlow v9/v10 templates. – Processing NetFlow v9/v10 data based on learnt earlier templates. – Adding support for IPv6 flows. – Adding stats for received and processed NetFlow packets, separate for IPv4 and IPv6. – Improving debug logging. GIXflow code is available here.
Several improvements have been implemented to GIXLG: – Multithreading. A few threads can now process updates received from ExaBGP. – A prefix cache to limit number of SQL queries. – An option to turn off all SQL operations. – Better logging. – PEP8 compliant code. GIXLG code is available here.
The code of GIXLG has been fully rewritten and is capable to process JSON format now.
Monitor your network for DDoS ExaDDOS is an application able to gather different data sources to present a real time unified view of your network. It can gather : SNMP information at your edge IPFIX export from your routers And present it using a web interface. Our goal is to very quickly integrate it with…
The experimental version of AS-Stats (AS-Stats + ExaBGP + MySQL + Memcached) with Netflow v9, v10 (IPFIX) and IP2ASN mapping support is available as a GitHub project.
On 30th August a first public version was released and is available in Google code repository.
NetFlow packets decoder written in Python works fine. It can be used combined with the route collector code in order to assess amount of traffic passing through a particular path.
ExaBGP works well, so all sessions were switched from Quagga to ExaBGP. New GIX looking glass is also ready. I am still working on processing Quagga dump files with updates (not only full dumps) from RIPE NCC and Route Views projects. When this task will be completed on graphs input direction will be more accurate…
A plugin to ExaBGP to inject prefixes directly to a MySQL database is almost ready (during testing process). I am going to prepare a replacement for KLG/MRLG looking glasses which will use directly MySQL database instead of Quagga cli and provide more or less the same functionality.