From: oetiker <oetiker@a5681a0c-68f1-0310-ab6d-d61299d08faa>
Date: Mon, 13 Mar 2006 23:09:14 +0000 (+0000)
Subject: added ourmon
X-Git-Url: https://git.tokkee.org/?a=commitdiff_plain;h=f6f957d3f5bf33b8fef3d09ec4d421a3c2468a10;p=rrdtool-all.git

added ourmon

git-svn-id: svn://svn.oetiker.ch/rrdtool/branches/1.2@773 a5681a0c-68f1-0310-ab6d-d61299d08faa
---

diff --git a/website/rrdworld/index.wml b/website/rrdworld/index.wml
index a1215f0e..e02a35e1 100644
--- a/website/rrdworld/index.wml
+++ b/website/rrdworld/index.wml
@@ -28,6 +28,7 @@ while we wait for new material to arrive.</p>
 #include "monitorix.xml"
 #include "munin.xml"
 #include "netmrg.xml"
+#include "ourmon.xml"
 #include "ow.xml"
 #include "ozmonitor.xml"
 #include "rrdcgi.xml"
diff --git a/website/rrdworld/ourmon.xml b/website/rrdworld/ourmon.xml
new file mode 100644
index 00000000..6a01cd9c
--- /dev/null
+++ b/website/rrdworld/ourmon.xml
@@ -0,0 +1,31 @@
+<rrdworld type="application" > 
+ 
+       <name> Ourmon Networm Monitoring and Anomaly Detection System </name>
+     <author> Jim Binkley </author>
+<description> 
+Ourmon is a statistically oriented open-source network monitoring and
+anomaly detection system.  It may be regarded as an open source
+equivalent of SNMP RMON II.  It is based on promiscuous mode packet
+collection on Ethernet (typically) interfaces.  Ourmon does not collect
+all the packets because one principle design goal is to extract signal
+from noise, and not store all the noise in a giant bag under the
+assumption that you can look at it "later" (there is no later).
+Instead it attempts to find important data and summarize it.  Data
+is displayed on the web via pictures or reports.  Features include
+RRDTOOL graphs built from user-defined BPF expressions, topn flow
+lists, topn ports, topn synning IP hosts, top UDP error makers, top
+scanners, and IRC channels and hosts.  Ourmon's anomaly detection
+features include TCP and UDP anomalous hosts, IRC "evil" networks
+(botnets) and a lovely graph that displays the number of remote and
+local scanners. TCP data also includes information about P2P using
+hosts, and soon will allow traffic classification via user-suppled
+PCRE pattern tags.
+</description>
+   <homepage> http://ourmon.sourceforge.net </homepage> 
+       <year> 2006 </year><month> 3 </month> <!-- Entry creation date -->
+    <license> BSD </license>
+
+   <livesite> http://ourmon.cat.pdx.edu/ourmon</livesite> 
+      <email> jrb@cs.pdx.edu </email> <!-- Author contact -->
+
+</rrdworld>