1 / 44

OAUNETMON: A Network Traffic Monitoring Tool

OAUNETMON: A Network Traffic Monitoring Tool. Olatunde Abiona Lecturer/Computer Engineer Department of Computer Science & Engineering Obafemi Awolowo University, Ile-Ife, NIGERIA. World Map. ©1996 MAGELLAN Geographix Santa Barbara, CA (800) 929-4MAP . Africa.

estrella
Télécharger la présentation

OAUNETMON: A Network Traffic Monitoring Tool

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. OAUNETMON: A Network Traffic Monitoring Tool Olatunde Abiona Lecturer/Computer Engineer Department of Computer Science & Engineering Obafemi Awolowo University, Ile-Ife, NIGERIA

  2. World Map ©1996 MAGELLAN Geographix Santa Barbara, CA (800) 929-4MAP

  3. Africa

  4. Nigeria Ile-Ife

  5. Obafemi Awolowo University, Ile-Ife Oduduwa Hall

  6. Obafemi Awolowo University, Ile-Ife College of Health Sciences building

  7. Obafemi Awolowo University, Ile-IfeComputer Science & Engineering Dept.

  8. Outline of the Presentation • Introduction • The Obafemi Awolowo University Network (OAUNet). • Design/Architecture of OAUNETMON. • Some screen shots of OAUNETMON. • Conclusions

  9. The Obafemi Awolowo University Ile-Ife, Nigeria • 250km North-East of Lagos • 20,000 students, 13 faculties and 2 colleges • Campus network: TCP/IP protocol and LINUX operating system. • Wireless spread spectrum radio technique for linking buildings • Over 600 individual account users, within a year of operation. • Capacity building component provided critical mass of competent Technical Staff

  10. The Obafemi Awolowo University. Network (OAUNet). • Was born out of a collaboration between International Centre for Theoretical Physics (ICTP), Trieste Italy and Obafemi Awolowo University (OAU) Ile-Ife Nigeria (1996). • Started with 3 subnets now over 14 subnets and 9 cyber cafes. • Full Internet connectivity ie 256 Kbps Uplink and 512 Kbps Downlink bustable to 1Mbps.

  11. OAUNET - Main Network Diagram VSAT Earth Station 64 Kbps AP 2Mbps Main HUB Dial up MODEM 33 Kbps Key sc - sciences tech - Technology cs - Computer Science usb - Secretariat chs - Health Science Agric- Agriculture NC - NACTEM OA - OAU Teaching hospital First Generation sc tech cs Second Generation usb chs agric Third Generation NC OS OS OS Fourth Generation OS OS OS OS C C Fifth Generation OS OS C C C

  12. Main HUB or network WLAN Antenna Inter Subnet Router Mail Server WEB Server Terminal Equipment Backup Server Modem Server Proxy Firewall CISCO router Pentium IV PCs 100 base Tx Ethernet Backbone

  13. Architecture of Most Subnets SA 2 Mbps link to Main network Antenna Subnet Server (UNIF II) INTEL Pentium CPU Powered by Linux Local DHCP Server Local NIS Server Local DNS Server Local Telnet Server Campus Wide NFS Static Router Masquerading and IP forwarding WaveLan cards SWITCH One or more client computers Running Windows or Linux + KDE Provide Print services, and telnet clients Auto- configured through DHCP Ethernet

  14. The original design of the LAN to INTERNET link

  15. OAUNETMON Setup

  16. Features of OAUNETMON • Non-Intrusive Network Monitoring system. • Web-based network monitor and analysis system • Capable of Handling Large log files • Capable of monitoring Fast Ethernet or switched network. • Capable of analyzing Proxy logs (squid access log flies)

  17. Design Consideration • Powerful user interface – web interface • Guaranteed packet capturing – uses gigabit interface for data capture • Classification of all protocol information – ability to classify and display all possible protocol in each layer • Security – Access are restricted only to those with valid username and password. • Viewing of real-time and historical data – shows online real-time status data and accumulated historical status data easily

  18. Equipment required for the setting up OAUNETMON • Pentium iv 2.0Ghz CPU • 1.0GB Ram, 80.0GB HDD • FDD, CD Writer 40X • 1Gigabit Ethernet Switch (D-link DES-3226L) • 1Gigabit Network interface card • 700VA UPS • Linux Operating System ( Mandrake 10.1)

  19. Architecture of OAUNETMON

  20. Perl wrapper script

  21. Routine Run_MRTG

  22. Routine Run_Webalizer

  23. Daily Graph

  24. Weekly and Monthly Graph

  25. Hosts Listing

  26. Host Usage Graph

  27. Hosts Usage Cont…

  28. Protocol Listing

  29. Protocol Usage Graph

  30. Protocol Usage Cont…

  31. Webalizer

  32. Webalizer

  33. Daily Usage

  34. Hourly Usage

  35. KB transferred

  36. Proxy Log Analysis • OAUNETMON also carryout proxy log analysis on squid access log

  37. Some Bandwidth optimization Technique • CBQ • HTB • Mirroring • Firewall • Filtering • Deny, Reject, Redirect …based on firewall rules • SQUID • Web caching • Access control list • Authentication • Delay pools • it is possible to limit internet traffic in a reasonable way depending on so-called 'magic words', existing in any given URL For example, a magic word could be '.mp3', '.exe' or '.avi', etc.

  38. OAUNETMON Installation • Install linux • /tmon • /logf • Install Mrtg • Install Webalizer • Iptraf • Install Apache • Replace your back bone switch with a Gigabit Switch that can support Port mirroring • Download all files from • http://www.ictp.it/~abionao/tunde To appropriate directories • Restart your computer!

  39. OAUNETMON DEMO • http://82.206.239.38/oaunetmon/

  40. Conclusion • Experimental design goals such as extracting highly detailed information without adversely affecting network performance (speed) is archived through a process of extracting the required information from IP packet without considering the contents. The scripts are available at http://www.ictp.it/~abionao .

  41. Acknowledgement • We wish to acknowledge the support of the Abdus Salam International Centre for Theoretical Physics (ICTP) for the donation of the equipment used for this study.

  42. THANK YOU

More Related