Changes between Version 16 and Version 17 of WikiStart


Ignore:
Timestamp:
12/11/13 11:58:23 (3 years ago)
Author:
nhorman
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • WikiStart

    v16 v17  
    1616 
    1717== How does dropwatch work == 
    18 Normally, monitoring for dropped packets requires the creation of a script that periodically polls all the aformentioned interfaces, checking for a change in various counter values.  Dropwatch instead listens on a netlink socket for the kernel to inform userspace (apps like dropwatch and any others), that a packet has been dropped.  This of course implies that the kernel has some sort of functionality to this end.  That functionality (called the netlink Drop Monitor protocol), is currently being reviewed upstream.  For those who would like to experiment  with dropwatch now, you can either retrieve the appropriate kernel patches from the netdev mailing list, or download them [https://fedorahosted.org/releases/d/r/dropwatch/dropwatch_kernel_patches.tbz2 here] 
     18Normally, monitoring for dropped packets requires the creation of a script that periodically polls all the aformentioned interfaces, checking for a change in various counter values.  Dropwatch uses the kernels dropmonitor netlink family protocol to listen for dropped packets.  This protocol reports the count and exact location in the source code of each dropped packet, allowing an admin to know precisely where network traffic is lost within a host system   
    1919 
    2020 
     
    2222dropwatch is built and available with kernel support in Fedora.  Currently if you want the code, you can browse it [http://git.fedorahosted.org/git/dropwatch.git here]. 
    2323The git repository address is: git://git.fedorahosted.org/dropwatch.git if you want to clone the tree and tinker 
    24 Once the kernel bits are in place, I'll package an official release [https://fedorahosted.org/releases/d/r/dropwatch/ here] 
    25 After that, I'll be packaging dropwatch as an rpm for fedora so you can just get it through yum.  Other distros are welcome & encouraged to package for themselves as well. 
     24Official releases are [https://fedorahosted.org/releases/d/r/dropwatch/ here].  Dropwatch is also available in the fedora repositories as an RPM install 
    2625 
    2726 
    2827== Roadmap == 
    29 Currently, Dropwatch is very rudimentary.  It allows you to turn the drop monitor protocol on and off, and informs you about dropped packet alerts. 
    3028 
    3129Current future enhancements for dropwatch:[[BR]] 
    3230 
    3331* Configuration of protocol (delay hysteresis, alert bundle size, etc)[[BR]] 
    34  
    35 * Translation of drop addresses to symbolic names[[BR]] 
    3632 
    3733* Exporting of drop history to a file for later analysis[[BR]]