netprobe

Bandwithd-style traffic counter with influxdb backend. Captures network traffic statistics using libpcap and stores the packet's metadata in influxdb. Network traffic can be analyzed by IP version, transport protocol and direction. Destination addresses are not stored to protect user privacy.

Traffic statistics can be filtered by

src. MAC address
src. IPv4/IPv6
transport protocol, see protocols(5)
flow direction in/out

how to use

netprobe needs special permissions to sniff the network. To run it with user permission cap_net_raw needs to be set.

$ sudo setcap cap_net_raw=ep netprobe`

netprobe 0.1 ( https://github.com/mlasch/netprobe )
Usage:
	-i, --interface		Network interface
	-u, --url		URL containing server, port, database and token
	-m, --measurement	Measurement Name
	    --nop		No actual insert (no operation)
	    --verbose
	    --version		Print program version

./netprobe -i eth0 -u http://localhost:5000/write/<token> -m bla

build

requirements

libpcap-dev
libcurl4-openssl-dev

build

mkdir cmake-build && cd cmake-build
cmake -GNinja ..
cmake --build .

Name		Name	Last commit message	Last commit date
Latest commit History 17 Commits
test		test
tests/mockserver		tests/mockserver
.clang-format		.clang-format
.gitignore		.gitignore
CMakeLists.txt		CMakeLists.txt
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
flow.c		flow.c
flow.h		flow.h
globals.c		globals.c
globals.h		globals.h
handle_packet.c		handle_packet.c
handle_packet.h		handle_packet.h
main.c		main.c
main.h		main.h

License

mlasch/netprobe

Folders and files

Latest commit

History

Repository files navigation

netprobe

how to use

build

requirements

build

About

Resources

License

Stars

Watchers

Forks

Languages