Pktstat: Open-source ethernet interface traffic monitor

2024-05-08 04:00

Pktstat is an open-source tool that is a straightforward alternative to ncurses-based Pktstat.

On Linux, it utilizes AF PACKET, while on other platforms, it employs generic PCAP live wire capture.

Pktstat is a versatile tool that doesn't rely on advanced or recent Linux kernel features.

Upon execution, Pktstat provides comprehensive per-IP and per-protocol statistics.

"While I've initially written a Gopacket based tool for maximum compatibility even with older systems with non-current Linux kernels, I've eventually couldn't resist, and I've rewritten the first version to a pure Golang with Linux eBPF module for maximum performance without the loss of information that commonly happens on high-traffic generic packet capture," Dinko Korunic, the creator of the tool, told Help Net Security.

"The first version initially used only TC hooks, but I later added XDP hooks, too, so that maximum performance is possible," Korunic concluded.

News URL

https://www.helpnetsecurity.com/2024/05/08/pktstat-open-source-ethernet-interface-traffic-monitor/

#opensource