Simple network monitoring tool. Powered by eBPF π
Kernel and user space code written entirely in Rust β€
Nflux is an eBPF-based tool that monitors incoming/outgoing traffic on a Linux system by
attaching a TC (Traffic Control) program using eBPF technology. It can be attached to both physical and virtual
interfaces, allowing us to obtain networking data at a very low level. You can also monitor dropped packets using the
tracepoint
tracepoint/skb/kfree_skb.
Quick installation:
curl -L https://github.com/containerscrew/nflux/releases/download/v0.12.4/nflux_0.12.4-1_amd64.deb -o nflux.deb && sudo apt install ./nflux.debNote
RPM package will come soon. Change also the release version you need in the URL above.
Use the generic binary instead:
curl --proto '=https' --tlsv1.2 -sSfL https://raw.githubusercontent.com/containerscrew/nflux/main/scripts/install.sh | shRead the installation doc.
sudo nflux --help
sudo nflux tc # L2/L3 monitoring
sudo nflux dpktRead the usage doc for more options.
Warning
The wiki is still under construction, so some pages may not be complete or outdated.
Read the wiki for more information about the project.
nflux is distributed under the terms of the GPL3 and MIT license.