Linux Software / Network & Internet / Networking Tools

EHNT 0.4

Date Added: February 07, 2010 | Visits: 1.152

Report Broken Link
Printer Friendly Version

Product Homepage
Download (90 downloads)

EHNT is a tool which turns streams of Netflow (version 5) data into something useful and human-readable. (Netflow is a UDP-based traffic reporting protocol created by Cisco, generated by Cisco, Juniper, Foundry, and other routers.) Netflow operates in many ways. It will dump flow records in human-readable form. It will also provide reports on top ASes, IP protocols, and tcp/udp ports. The reports can be generated over various intervals, from 1 minute to 1 day. Component programs are: 1. ehntserv listens to netflow version 5 UDP packets, and also listens for client TCP connections. When a TCP client connects, the server starts forwarding all the netflow packets it receives (plus the IP address of the originating device) to that client. ehntserv does not currently do any IP access control. I suggest that you use ipchains or iptables on your linux box, or IP Filter (ipf) (http://coombs.anu.edu.au/ipfilter/) on your Solaris or BSD box. I dont know what the current state of packet filtering is on other Unixes; IP Filter seems to support several. 2. ehnt connects to ehntserv and displays the flows it receives in various ways. It currently has four modes (-m ): - top mode displays average utilization by top ASes, IP protocols, or tcp/udp ports over a given interval (from 1 minute to 1 day). Top mode is different when it focuses on a single interface on a single router, because then you get to see summaries of source and destionation for both inbound and outbound traffic. Otherwise, you just get summaries of source and destination. - dump mode displays individual flows - shortdump mode display individual flows in a more compact but hard to read fashion - colondump mode display individual flows in a machine-readable format. And yes, I recognize that the name of this mode is unpleasant. In all three modes, simple (REALLY simple) filtering can be done for AS number, TCP/UDP port, IP protocol number, device sending the flow record, and SNMP interface index. You may think of ehnt in the three dump modes as a brain-dead and incredibly simple tcpdump for netflow. ehnt also has the silly and uninspiredly-named big filter, in which it only displays flows with are bigger (in packets or bytes) than any flow received before it. This only makes sense in the three dump modes. Whats New in This Release: - Added Unix domain support for client connections, enabled by default.

Requirements: No special requirements

Platforms: Linux

Keyword: Ehnt, Flows, Ip, Mode, Netflow, Networking, Streams, System, Tcp, Udp

Users rating: 0/10

License: Freeware

Size: 2.3 MB

USER REVIEWS

More Reviews or Write Review

EHNT RELATED

Networking Tools - ISIC 0.06 ISIC is a suite of utilities to exercise the stability of an IP Stack and its component stacks (TCP, UDP, ICMP et. al.). It generates piles of pseudo random packets of the target protocol. The packets be given tendancies to conform to. Ie 50% of...	27.65 KB
Networking Tools - pacgen 1.0 PacGen is an Ethernet IP TCP/UDP packet generating tool for Linux. Experimental ARP generation is included. Experimental ARP generation is included. This tool enables custom packets with configurable Ethernet, IP, TCP, and UDP layers as well as...	23.55 KB
Networking Tools - netscript 1.7.1 netscript is a multi-platform, lightweight and portable TCP/UDP socket scripting system. It is intended to automate situations, built on a word-to-word ruleset response system. It includes wildcard support, character replacement, random...	471.04 KB
Utilities - Just For Fun Network Management System 0.8.3 Just For Fun Network Management System is a PHP-based network management system that features an integrated syslog, Tacacs, TFTP configuration downloading, SNMP polling, SNMP traps, journalling, auto-discovery, performance graphs (RRD), SLAs, and...	552.96 KB
Networking Tools - ETrace 1.1 ETrace is a configurable static port network tracing tool, similar to traceroute, but supporting ICMP, TCP, UDP and other IP protocols. Usage: etrace [ -BbCcnv ] [ -p profile ] [ -F config ] [ -i interface ] [ -I icmp-type ] [ -T port ] [ -U...	47.1 KB
Security Tools - Seconfig XP 1.1 Seconfig XP can configure Windows not to use TCP/IP as transport protocol for NetBIOS, SMB and RPC, thus leaving TCP/UDP ports 135, 137-139 and 445 (the most exploited Windows networking weak points) closed. This tool works only with Windows...	38 KB
Network Monitors - RemoteNetstat 1.2.4 Remote Network Statistics displays remote network computer IP, ICMP, TCP, UDP and Server statistics, shows the details about IP datagrams including forwarding enabled-disabled state , default time to live, the number of received datagrams,...	559.23 KB
Internet Client Suites - Routix NetCom 2.0 NetCom is a software for system administrators, IT-professionals and advanced users. With NetCom you can give full control over local area network (LAN) and over INTERNET connections. - support for remote scripting (with Microsoft Active...	5.03 MB
Security - PKDUMP 3.3 PKDUMP detects any TCP ,UDP port scanning or open connection attempt from foreign host over the internet with IP protocol version 4 or IP protocol version 6 . It detects for: TCP connect , TCP syn , TCP fin , TCP xmas, TCP ack, TCP null(no...
Dial-up Networking Tools - TrafficEmulator 1.7.3 Nsasoft Network Traffic Emulator generates IP/ICMP/TCP/UDP traffic from clients to server to stress test servers, routers and firewalls under heavy network load. It is a very simple and fast program which can simulate client activity. The tool is...	484.86 KB

NEW DOWNLOADS IN NETWORK & INTERNET, NETWORKING TOOLS

Network & Internet - Free WiFi Hotspot 3.3.1 Free WiFi Hotspot is a super easy solution to turn your laptop or notebook into a portable Wi-Fi hotspot, wirelessly sharing your internet connections like DSL, Cable, Bluetooth, Mobile Broadband Card, Dial-Up, etc. through the built-in wireless...	1.04 MB
Network & Internet - Easy Uploads 1.8 Easy uploads is a file storage media streaming application designed by Filestreamers that allows you to upload, store, and stream your files from their virtually unlimited file storage server. Easy Uploads can backup,share, and stream your files...	615.97 KB
Network & Internet - PacketFence ZEN 3.1.0 PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) system. Boosting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, 802.1X...	1024 MB
Network & Internet - django-dbstorage 1.3 A Django file storage backend for files in the database.	10.24 KB
Network & Internet - SQL Inject Me 0.4.5 SQL Inject Me is a Firefox extension used to test for SQL Injection vulnerabilities. The tool works by submitting your HTML forms and substituting the form value with strings that are representative of an SQL Injection attack.	133.12 KB
Networking Tools - gvrpad 0.1 gvrpad is a daemon that makes GVRP announcements of all VLAN interfaces on a FreeBSD system. GVRP is the GARP VLAN Registration Protocol, defined in IEEE 802.1Q (VLANS); GARP is the Generic Attribute Registration Protocol, defined in 802.1D...	15.36 KB
Networking Tools - Cheops 0.61 Cheops is an Open Source Network User Interface. It is designed to be the network equivalent of a swiss-army knife, unifying your network utilities. Cheops is for the network what a file manager is for your filesystem..	317.44 KB
Networking Tools - ssh tunnel on demand 1.0 ssh tunnel on demand provides a script that creates an SSH tunnel on demand. ssh tunnel on demand is a script that makes it possible for a user to create an SSH tunnel to a server and connect to it without needing an account on the box or any...	13.31 KB
Networking Tools - strongSwan 4.1.5 strongSwan is an OpenSource IPsec implementation for the Linux operating system. strongSwan is an OpenSource IPsec implementation for the Linux operating system. In order to have a stable IPsec platform to base our future extensions of the X.509...	1.7 MB
Networking Tools - triggers 0.41 trigger is a lightweight, asynchronous notification mechanism to set off events in and across systems. The poor mans daily snapshot, glastree builds live backup trees, with branches for each day. Users directly browse the past to recover older...	14.34 KB

Windows Software	BeOS Software
Macintosh Software	Linux Software
PDA Software	OS/2 Software
Mobile Software	Scripts