Skip to content

Latest commit

 

History

History
182 lines (161 loc) · 16.1 KB

README.md

File metadata and controls

182 lines (161 loc) · 16.1 KB

Awesome Computer Networking Resources Awesome

An awesome list of resources to design, implement and operate computer networks.

Contents

Network Design Resources

Network Implementation

Routing

  • Free Range Routing - IP routing protocol suite for Linux and Unix platforms which includes protocol daemons for BGP, IS-IS, LDP, OSPF, PIM, and RIP.
  • VyOS - Open source network operating system that can be installed on physical hardware or a virtual machine on your own server, or a cloud platform.

SD-WAN

Switching

  • snabb - Snabb (formerly "Snabb Switch") is a simple and fast packet networking toolkit.

VPN

  • Firezone - Open-source VPN server and egress firewall for Linux built on WireGuard. Firezone is easy to set up (all dependencies are bundled thanks to Chef Omnibus), secure, performant, and self hostable.
  • PiVPN - Simplest OpenVPN setup and configuration, designed for Raspberry Pi.

Network Services

  • Pi-Hole - Network-wide ad blocking via your own Linux hardware.
  • PortNox - Network Access Control as a Service (Commercial)
  • Bunny.net - Global Content Delivery Platform

Network Simulators and Traffic Generators

  • GNS3 - Network software emulator that allows the combination of virtual and real devices, used to simulate complex networks.
  • Mininet - Instant Virtual Network on your Laptop.
  • WANem - Wide Area Network Emulator.
  • Ostinato - Packet crafter, network traffic generator and analyzer with a friendly GUI.
  • SIPp - Free Open Source test tool / traffic generator for the SIP protocol.
  • StarTrinity SIP Tester™ - VoIP monitoring and testing tool, VoIP recorder.
  • Multi-Generator - Open source software that provides the ability to perform IP network performance tests and measurements using TCP and UDP/IP traffic.
  • Network-Conditions-Emulator - Artificially limit uplink and downlink bandwidth, delay and loss rate on selected interfaces.
  • snabb - Snabb (formerly "Snabb Switch") is a simple and fast packet networking toolkit.
  • vqfx10k-vagrant - Vagrant files to bring up Juniper virtual QFX instances.
  • Packet Communication Investigator - import network traffic into a graphtool to analyse packet interactions between machines and network.
  • SafePcap - GDPR and NISTIR 8053 Compliance for your Pcap files.
  • Arkime - Arkime augments your current security infrastructure to store and index network traffic in standard PCAP format, providing fast, indexed access.
  • pyNTM - a network traffic modeler written in python 3.

Network Connectivity

Network Operations

Network Change Management

  • Batfish - Network configuration analysis tool that can find bugs and guarantee the correctness of (planned or current) network configurations.
  • Oxidized - Network device configuration backup tool. It's a RANCID replacement.
  • Netshot - Network configuration and compliance management software.
  • Jazigo - Jazigo is a tool written in Go for retrieving configuration for multiple devices, similar to rancid, fetchconfig, oxidized, Sweet.
  • fetchconfig - fetchconfig is a Perl script for retrieving configuration of multiple devices.
  • sweet - Network device configuration backups and change alerts for the 21st century - inspired by RANCID.
  • stockpiler - Stockpiler gathers network device configurations and stores them in a local Git repository.
  • Jerikan - a configuration management system for network teams

Network Automation

  • Napalm - Vendor neutral, cross-platform open source project that provides a unified API to network devices.
  • netmiko - Multi-vendor library to simplify Paramiko SSH connections to network devices.
  • trigger - Robust network automation toolkit written in Python that was designed for interfacing with network devices.
  • Ansible - IT automation platform that makes your applications and systems easier to deploy by using SSH, with no agents to install on remote systems.
  • nornir - Pluggable multi-threaded framework with inventory management to help operate collections of devices.
  • CNaaS-NMS - Campus Network-as-a-Service - Network Management System. Software to automate management of a campus network (LAN).
  • pyats - pyATS enable network engineers to perform stateful validation of their device operational status.
  • itential.com - Low-Code Automation for Physical, Virtual, and Cloud Networks(commercial).
  • AWX - the upstream project for Tower, a commercial derivative of AWX.
  • Unimus Unimus makes Network Automation and Configuration Management easy (commercial).
  • Blackbox - Network automation for the hybrid multi-cloud era (commercial).
  • Nephio - Nephio’s goal is to deliver carrier-grade, simple, open, Kubernetes-based cloud native intent automation and common automation templates.
  • GitNOps - GitNops is an operational framework that takes DevOps best practices used for application development such as version control, collaboration, compliance, and CI/CD, and applies them to network automation.

Network Monitoring

  • perfSONAR - Network measurement toolkit designed to provide federated coverage of paths, and help to establish end-to-end usage expectations.
  • UDPing - Measure latency and packet loss across a link.
  • Vaping - vaping is a healthy alternative to smokeping.
  • veryflow - Continuous network verification system.
  • Forward Networks - Network Behavior Analysis (Commercial).
  • ToDD - Distributed, testing-on-demand system focused on testing network related conditions.
  • pmacct - Small set of multi-purpose passive network monitoring tools, including Netflow or IPFIX generation.
  • LibreNMS - Network monitoring system that supports automatic discovery, alerting, distributed polling and others.
  • Observium - Low-maintenance auto-discovering network monitoring platform.
  • Elastiflow - Netflow collector and reporting.
  • vFlow - High-performance, scalable and reliable IPFIX, sFlow and Netflow collector (written in pure Golang).
  • goFlow - a NetFlow/IPFIX/sFlow collector in Go.
  • BGPAlerter - Self-configuring BGP monitoring tool
  • xpresso - the standard pyATS UI dashboard

Security Monitoring

  • cPacket - Performance monitoring solutions that deliver real-time analysis and coverage (Commercial).
  • Proxmox Mail Gateway - Open-source email security solution helping you to protect your mail server against all email threats the moment they emerge.
  • FastNetMon - DDoS detection tool (Open Source or Commercial).
  • PyREBox - Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU.
  • Canary - Honeypot solution (commercial).
  • CanaryTokens - Free honeytoken.
  • Malcolm - Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files) and Zeek logs.
  • Zeek - Zeek is an open source network security monitoring tool.
    • zeek2es - A Zeek log to Elastic/OpenSearch log converter.
  • DrKeithJones.com - Keith Jones' blog on cyber security and security monitoring.

Network Inventory

  • phpipam - Open-source web IP address management application (IPAM).
  • nsot - Network Source of Truth is an open source IPAM and network inventory database.
  • netbox - IP address management (IPAM) and data center infrastructure management (DCIM) tool.
  • ipfabric - Network Topology Mapping & Visualization (Commercial).
  • drawthe.net - Draws network diagrams dynamically from a text file describing the placement, layout and icons.

Networking Labs

  • VIRL - Virtual Internet Routing Lab by Cisco.
  • dCloud - Fully scripted, customizable environments available almost instantly in the cloud for free.
  • Cisco DevNet Labs - Cisco's sandboxing environment

Related resources

DevNet Tools

  • Celery - Asynchronous task queue/job queue based on distributed message passing. It is focused on real-time operation, but supports scheduling as well.
  • Ajenti - Manage a remote Linux box at any time using everyday tools like a web terminal, text editor, file manager and others.
  • ProxMox Virtualiation Platform - Open-source platform for enterprise virtualization that tightly integrates KVM hypervisor and LXC containers, software-defined storage and networking functionality on a single platform, and easily manages high availability clusters and disaster recovery tools with the built-in web management interface.
  • ops_tcpdump_handler - Chef Cookbook to test network connectivity .
  • chromaterm - ChromaTerm is a Python module and script used for coloring the output to terminals.
  • telnetmyip.com - Simple service that returns your source IP information in a json format.
  • icanhaztraceroute.com - Simple service that returns a traceroute back to your source IP.
  • Who is my ISP? - Simple service that shows the ISP of an IP.
  • NsLookup.io - Simple service that shows all DNS records for a domain name.
  • netshoot - a Docker + Kubernetes network trouble-shooting swiss-army container.
  • netshoot - a Docker + Kubernetes network trouble-shooting swiss-army container.
  • DNSlookup - Easy DNS lookup Tools
  • What is my isp - tool to find ISP name

DevNet Monitoring

  • netdata - Distributed real-time performance and health monitoring.
  • Grafana - Open source software for time series analytics.
  • monit -Small Open Source utility for managing and monitoring Unix systems. Monit conducts automatic maintnance and repair and can execute meaningful causal actions in error situations.
  • Prometheus - Open-source systems monitoring and alerting toolkit originally built at SoundCloud.
  • sensu - Monitor servers, services, application health, and business KPIs. Collect and analyze custom metrics. Get notified about failures before your users do. Give your business the competitive advantage it deserves. (Open Source or Commercial).
  • ELK Stack
    • Elasticsearch - Open Source, Distributed, RESTful Search Engine.
    • LogStash - Transport and process your logs, events, or other data.
    • Kibana - Analytics and search dashboard for Elasticsearch.
  • Graylog - Parse and enrich logs, wire data, and event data from any data source (Commercial, Free for less than 5GB/day).

DevNet Knowledgebase

  • ITGlue - IT focused documentation solution (Commercial).

DevNet Inventory

  • Snipe IT - Open Source Asset Management tool.

Knowledge Resources

  • Packet Pushers Podcast - Podcast about data networking by network architects. Deeply technical & unabashedly nerdy.
  • Risky Business Podcast - Features news and in-depth commentary from security industry luminaries.
  • Software Gone Wild Podcast - Software Gone Wild is focusing on architectures, solutions and technologies that real networking engineers use in production networks.
  • Cisco DevNet Basics - Learn network programmability basics.
  • Cisco Tools - List of Cisco tools maintained by Cisco.
  • Juniper Day One Books - Day One Books cover networking technologies using step-by-step instructions and practical examples written by working engineers