With the continuous advancement of network informatization application projects, many companies or units have accumulated a certain number of network hardware devices, and these network hardware devices will be scattered in different physical locations according to different functions. There may be some network hardware devices. It is centralized management, and some network hardware devices cannot be managed centrally, but can only be placed in a decentralized manner. This will bring certain difficulties to the management of computer network equipment, because once the network equipment fails, the location of the network failure cannot be accurately and effectively analyzed in a timely manner. The impact is huge, and the consequences are also very serious. Therefore, how to accurately and effectively obtain the running status information of these network infrastructure devices, and how to monitor the running status of the network hardware devices conveniently and quickly is a big problem that needs to be solved urgently for network administrators.
1、OpenNMS
OpenNMS, short for Network Management System, is an open source software network monitoring tool. It can be used to automatically discover network nodes and monitor network services, such as HTTP, DNS, SSH, etc. When system services stop, OpenNMS will send a notification according to the rules established by the administrator to inform the operation and maintenance personnel of network obstacles, event aggregation, automatic Perform corresponding actions and monitor service-level performance. It can support the SNMP network management protocol, ensure the scalability of management, and provide customized functions to facilitate the expansion and contraction of the management scope. The traffic and hardware usage of the contact system need to be configured in snmp.
Currently, OpenNMS focuses on the following three areas:
- Service Polling - Checks the availability of application services and generates availability reports.
- Data Collection - Collect, save and report network information data, and set and trigger thresholds.
- Event and Alert Management - Receive events from within and outside the event system, and feed source events to a robust fault alerting and fault escalation system.
OpenNMS lacks sufficient Chinese documentation and local service support, and there is still a long way to go for localization. Moreover, the technical requirements are very high, and it is very difficult for general operation and maintenance personnel to use it well. In the process of use, there will be a phenomenon that it cannot be started. Especially for SNMP problems, it is generally necessary to turn off the TRAP service.
2、SugarNMS
The SugarNMS Zhihe network management platform has implemented basic network management functions including device topology, fault management, performance management, configuration management, and security management. It adopts a unified device access model to comprehensively monitor network devices, hosts/servers, middleware applications, and Web services. Wait.
1. Automatic discovery: In the process of automatic discovery, you can search for network devices, identify the device type and manufacturer model, generate a panel diagram of the device or search for device resources, such as: board, port, CPU, memory, disk, etc., and Discover link relationships between devices.
2. Topology management: Display network devices and their connection relationships in a visualized topology diagram, which can be edited by users. Devices, device resources, and connections can be managed through the topology map.
3. Device management: Through the topology view, users can easily manage devices and their configuration parameters.
4. Device resource management: On the basis of the topology diagram, it is possible to further display the device details, including the physical components of the device, the services on the server (Web server, middleware application service, database server, mail server) or other monitoring defined by the user. object.
5. Connection management: The user can edit the connection through the topology view and select the performance data item displayed in real time for the connection.
6. Fault management : Various fault information can be collected and displayed in a timely manner. Fault information can be viewed through equipment, resources, and connections, and faults can also be managed through a unified fault management interface.
7. Performance management: Comprehensively collect or receive a variety of new energy data of equipment resources, display them visually through graphs, bar graphs or tables, and view changes in performance indicators by day, week, and month.
8. Security management: Support a variety of security management functions, such as QOS security policy, MAC-IP binding, black and white list and admission control.
9. Statistical report: It supports a number of statistical functions of data, allowing users to have a comprehensive and intuitive understanding of the network. Supports exporting or printing the statistical charts in the software for backup or comparative viewing.
3、Nagios
Nagios is an open source server/network monitoring solution that provides complete monitoring and alerting mechanisms for servers, switches, applications and services. It has a plugin API so you can extend its functionality out of the box. Nagios can run on Linux/Unix platforms, and provides an optional browser-based WEB interface to facilitate system administrators to view network status, various system problems, and logs, etc.
Main features of Nagios:
1. Monitor network services (SMTP, POP3, HTTP, NNTP, PING, etc.)
2. Monitor host resources (processes, disks, etc.)
3. Simple plugin design can easily extend Nagios monitoring capabilities
4. Concurrent processing of monitoring services, etc.
5. Error notification function (via email, pager, or other user-defined methods)
6. You can specify a custom event handling controller
7. Optional browser-based WEB interface to facilitate system administrators to view network status, various system problems, and logs, etc.
8. You can view system monitoring information through your mobile phone
4、Collectd
collectd is a daemon process that collects system performance and provides a mechanism for various storage methods to store different values. For example in the form of an RRD file. When the system is running and storing information, Collectd will periodically collect statistics about the system. That information can be used to find current system performance bottlenecks. (such as performance analysis) and predicting the future load of the system (such as capacity planning). If you need beautiful graphics to display your data and are tired of internal solutions, congratulations, you found the right one place.
The power of collectd lies in its rich set of plugins. A description of the list of plugins can be found in the README file.
Plugins are divided into two main categories: inputs and outputs .
Input plug-in: used for periodic query, to query the current value you want to get and submit it to the daemon in some way. For example, the CPU plugin reads various parameters of the current CPU counter (user, system, nice, etc.) and dispatches these values to the daemon
Output plugin: get value processing from the daemon. Typical applications will write to RRD files and CSV files, or send data over the network to a remote box.
Of course not all plugins can be divided in this way. For example, a network plugin can send (output) and receive (input) values. In addition, the plugin starts a socket port at initialization, and sends data after receiving data, which is different from other input plugins. You can understand that network plugins work asynchronously, which is also reasonable.
In addition, there are two log plugins (log): logfile plugin and syslog plugin. Through these plugins, collectd can provide users with solution information. You can set different log levels.
Since version 4.3.0 collectd supports monitoring. This is achieved through user-defined thresholds. If a value falls outside the threshold range, a notification will be dispatched to the notification plugin.
5、Monit
Monit is a very feature-rich process, file, directory and device monitoring software for Unix platforms. It can automatically repair those programs that have stopped working, and Envoy is suitable for dealing with software errors caused by many reasons. Monit is a cross-platform tool for monitoring Unix/linux systems (such as Linux, BSD, OSX, Solaris). Monit is particularly easy to install, very lightweight, and does not depend on any third-party programs, plugins, or libraries.
Use monit to monitor processes, especially useful for monitoring daemons, such as /etc/init.d started at system startup time, such as sendmail, ssh, apache, mysql, etc.
1. You can use Monit to monitor files, directories, and file systems. Monit can monitor changes in these items, such as timestamps, checksum changes, and file size changes. This is safer. For example, if you change the content of a file, then it The md5 or sha1 checksum will not change.
2. monit can monitor network links to various servers, local or remote, TCP or UDP, and Unix DomainSockets are all supported
3. monit can be used to test programs or scripts at certain times, you can test the return value of the program, and based on this, perform some necessary operations, such as performing an action or sending an alert
4. Monit can be used to monitor general system resources such as CPU usage, memory, and Load Acerage
6、Cacti
Cacti is a set of graphical analysis tools for network traffic monitoring based on PHP, MySQL, SNMP and RRDTool.
Cacti obtains data through snmpget, uses RRDtool to draw graphics, and you don't need to understand the complex parameters of RRDtool at all. It provides very powerful data and user management functions. It can specify that each user can view the tree structure, host and any graph. It can also be combined with LDAP for user authentication, and can also add templates by itself. The function is very powerful and complete. . Friendly interface. The development of the software Cacti is based on making it easier for RRDTool users to use the software. In addition to basic Snmp traffic and system information monitoring, Cacti can also plug in Scripts and add Templates to make various monitoring graphs.
cacti is a software implemented in php language. Its main function is to use snmp service to obtain data, and then use rrdtool to store and update the data. When the user needs to view the data, use rrdtool to generate a chart and present it to the user. So snmp and rrdtool are the keys to cacti. Snmp is related to data collection, and rrdtool is related to data storage and graph generation.
7、Icinga
Icinga started out as a fork of Nagios, but was recently rewritten as Icinga 2. Both versions are under active development and are now available, Icinga 1.x is backward compatible with Nagios plugins and configurations. Icinga 2 has been developed to be smaller and sleeker, it provides distributed monitoring and multi-threading framework, which was not available in Nagios and Icinga 1. You can migrate from Nagios to Icinga 1, and from Icinga 1 to Icinga 2.
Like Nagios, Icinga can be used to monitor any device that communicates over IP, just as you would with SNMP and custom plugins and accessories.
There are several web UIs for Icinga, the main difference from Nagios is configuration, which can be done through the web UI instead of going through a configuration file. This is a great advantage for those who prefer to manage configuration rather than the command line.
Icinga integrates with various graphing and monitoring packages, such as PNPP4Nagios, inGraph, and Graphite, to provide solid performance visualization. Icinga has also expanded reporting capabilities.
8、zabbix
Zabbix is an enterprise-level open source solution that provides distributed system monitoring and network monitoring functions based on a WEB interface. It can monitor various network parameters to ensure the safe operation of the server system; and provide a soft notification mechanism to allow system administrators to quickly locate/solve existing problems.
The zabbix server can provide monitoring of remote server/network status, data collection and other functions through SNMP, zabbix agent, ping, port monitoring, etc. It can run on Linux, Solaris, HP-UX, AIX, Free BSD, Open BSD, on platforms such as OS X.
The zabbix agent needs to be installed on the monitored target server. It mainly completes the collection of hardware information or operating system-related memory, CPU and other information. zabbix agent can run on Linux, Solaris, HP-UX, AIX, Free BSD, Open BSD, OS X, Tru64/OSF1, Windows NT4.0, Windows 2000/2003/XP/Vista) and other systems.
The zabbix server can monitor the service status of the remote server alone; it can also cooperate with the zabbix agent to poll the zabbix agent to actively receive monitoring data (trapping mode), and also passively receive data sent by the zabbix agent (trapping mode).
9、Ganglia
Ganglia is an open source cluster monitoring project from UC Berkeley designed to measure thousands of nodes. The core of Ganglia consists of gmond, gmetad and a web front end. It is mainly used to monitor system performance, such as: cpu, mem, hard disk utilization, I/O load, network traffic, etc. It is easy to see the working status of each node through the curve, adjust and allocate system resources reasonably, improve The overall performance of the system plays an important role.
Each computer runs a daemon named gmond that collects and sends metrics data. A host that receives all metric data can display this data and can pass a reduced form of this data into the hierarchy. It is because of this hierarchy pattern that Ganglia can scale well. There is very little system load from gmond, which makes it a piece of code that runs on each machine in the cluster without affecting user performance. Collecting all this data multiple times can affect node performance. "Jitter" in the network occurs when a large number of small messages occur at the same time, and this problem can be avoided by keeping the node clocks consistent.
gmetad can be deployed on any node in the cluster or an independent host connected to the cluster through the network. It communicates with gmond through unicast routing, collects the status information of nodes in the area, and saves it in the database in the form of XML data .
10、Munin
Munin is a powerful server monitoring software. Different from the traditional server status monitoring software Nagios and cacti, Munin does not need PHP, MysqL, and has no Web operation interface, which saves server resources. At the same time, Munin has the ability to automatically collect data And draw the image out, simple, convenient and fast.
The main advantage of Munin is that it provides both the ability to collect and analyze information, so you don't need to install a web server on each node, and the additional information at the bottom of the detail page can help you get some important statistics.
The functions are mainly collection and analysis functions, which can help you collect multiple server information and analyze all collected information on a central server, making it quite simple to install and update through apt source or yum source. When you visit http://localhost/munin, Munin will display an overview graph showing you all connected nodes, including specific functions to the nodes such as disk, network, NFS, and processes. Clicking on the node name will display two lines of graphs, each line will display daily statistics on the left and weekly statistics on the right. Clicking on these graphs will provide a detailed page showing a day and a month. At the bottom of this detail page, more detailed information about the data is displayed, including irregular activity notifications.
Monit is a tool that runs on the application layer with very rich functions to monitor and manage processes, files, directories, and devices in the system. Monit includes a built-in HTTPS web interface that makes it easy to view the servers that Monit monitors using a browser. Monit is an artifact for administrators. Monit can automatically repair programs that have stopped working, and Envoy is suitable for dealing with software errors caused by many reasons. Nagios is monitoring, and Monit is not only local monitoring, but also remote service monitoring. If the service can be done, it can always be "resurrected from the dead", that is, the service is always online.