Dashboard
System health and network overview
Last updated: just now
5
Devices Monitored
↑ All reachable
99.97%
Network Uptime (30d)
↑ 0.02% vs last month
3
Active Alerts
↓ 2 cleared today
284
TACACS+ Auths (7d)
↑ 98.2% success rate
⬡ Device CPU UtilizationLive
◈ Memory UtilizationLive
🔑 TACACS+ ActivityOperational
Mon
Tue
Wed
Thu
Fri
Sat
Sun
| User | Auths | Last Seen | Status |
|---|---|---|---|
| admin | 142 | 2 min ago | Active |
| rmartinez | 98 | 1h ago | Idle |
| achen | 39 | 3h ago | Idle |
⚡ Fail2Ban Jails14 Banned
3
Active Jails
14
Banned IPs
847
Blocked 24h
| Jail | Banned | Attempts/1h | Status |
|---|---|---|---|
| sshd | 11 | 243 | Active |
| nginx-http-auth | 2 | 18 | Active |
| tacacs-auth | 1 | 4 | Active |
TACACS+ AAA
Authentication, Authorization & Accounting management
● tac_plus running · port 49
284
Total Auths (7d)
98.2%
Success Rate
5
Failed Auths
3
Active Users
🔑 User Accounts
AD Group Sync: ● 2 min ago
| Username | Source | Privilege Level | Devices | Last Auth | Status | Actions |
|---|
⚙ TACACS+ Server Config
📋 Recent Auth Log
09:41:02adminRT-EG-01-A — priv15 — show bgp summary — permit
09:38:11adminASA-EG-01 — priv15 — crypto key generate — permit
08:52:44rmartinezSW-01-A — priv7 — show interfaces — permit
08:53:01rmartinezSW-01-A — priv7 — configure terminal — DENY
03:14:08unknownASA-EG-01 — auth failure — banned by Fail2Ban
02:00:00achenRT-EG-01-A — priv1 — show version — permit
SNMPv3 Devices
Device inventory and polling configuration
⬡ Device Inventory5 Online
| Device | IP Address | Type | SNMPv3 User | CPU | Memory | Last Poll | Status | Actions |
|---|---|---|---|---|---|---|---|---|
| RT-EG-01-A | 10.1.2.1 | Router | snmp-users | 12% | 40% | 5s ago | Online | |
| SW-01-A | 10.1.2.11 | Switch | snmp-users | 7% | 30% | 5s ago | Online | |
| ASA-EG-01 | 10.1.2.12 | Firewall | snmp-users | 24% | 60% | 5s ago | Online | |
| NMS-Server | 10.1.2.253 | Server | snmp-users | 8% | 10% | 5s ago | Online | |
| DC-01-A | 10.1.2.254 | DC | snmp-users | 19% | 45% | 5s ago | Online |
⚙ Global SNMPv3 Credentials
Config Backup
Git-based configuration archival via Oxidized
3/3
Devices Synced
47
Total Commits
2 min
Since Last Backup
⬙ Git Commit LogAuto-backup every 6h
Config Diff ViewerClick a commit to view diff
Firewall — UFW
Uncomplicated Firewall rule management
UFW Active — Default Deny
🛡 Active Rules
| To | Action | From | Protocol | Comment | Actions |
|---|
Default Policies
INCOMING
DENY
OUTGOING
ALLOW
FORWARDING
DENY
Fail2Ban IDS
Intrusion detection and IP banning
14
Banned IPs
847
Blocked Attempts 24h
3
Active Jails
10
Max Retries
⚡ Jail Status
| Jail | Currently Banned | Attempts 1h | Find Time | Ban Time | Status |
|---|---|---|---|---|---|
| sshd | 11 | 243 | 600s | 3600s | Active |
| nginx-http-auth | 2 | 18 | 600s | 1800s | Active |
| tacacs-auth | 1 | 4 | 300s | 86400s | Active |
Banned IP List
| IP Address | Jail | Banned At | Action |
|---|---|---|---|
| 45.146.164.100 | sshd | 03:14:08 | |
| 192.168.100.55 | tacacs-auth | 01:22:44 | |
| 103.75.190.2 | sshd | 22:41:03 | |
| 198.51.100.44 | nginx-http-auth | 20:15:11 |
⚙ Jail Configuration
Monitoring
Grafana dashboards — Prometheus + SNMP Exporter
⬡ CPU UtilizationLive
◈ Memory UtilizationLive
📊 Interface Throughput5-min avg
| Device | Interface | In (Mbps) | Out (Mbps) | Errors In | Errors Out | Status |
|---|---|---|---|---|---|---|
| RT-EG-01-A | Gi0/0 (WAN) | 142.3 | 89.7 | 0 | 0 | Up |
| RT-EG-01-A | Gi0/1 (LAN) | 38.1 | 201.4 | 0 | 0 | Up |
| SW-01-A | Gi1/0/1 (Uplink) | 180.2 | 220.8 | 0 | 2 | Up |
| ASA-EG-01 | Gi0/0 (Outside) | 55.9 | 32.4 | 0 | 0 | Up |
Syslog
Centralized log aggregation via rsyslog + Loki
📡 Live Log Stream● Streaming
Alerting
Grafana Unified Alerting — SMTP and webhook notifications
3
Firing Alerts
12
Healthy Rules
2
Silences Active
🔔 Alert Rules
| Rule Name | Severity | Condition | State | Enabled | Actions |
|---|---|---|---|---|---|
| High CPU — ASA-EG-01 | Warning | CPU > 80% for 5m | Firing | ||
| TACACS+ Auth Failures | Critical | Failures > 10 in 5m | Normal | ||
| Device Unreachable | Critical | No SNMP response 3m | Normal | ||
| High Memory — ASA | Warning | Memory > 85% | Firing | ||
| BGP Session Down | Critical | BGP peer state != Established | Normal |
✉ Notification Config
Audit Reports
TACACS+ access audit, command logging, and compliance exports
284
Total Auths (7d)
279
Successful
5
Failed
98.2%
Success Rate
📋 Command Audit Log
| Timestamp | User | Source IP | Device | Priv | Command | Result |
|---|---|---|---|---|---|---|
| 2026-03-05 09:41:02 | admin | 10.1.3.14 | RT-EG-01-A | 15 | show bgp summary | Permit |
| 2026-03-05 09:38:11 | admin | 10.1.3.14 | ASA-EG-01 | 15 | crypto key generate rsa | Permit |
| 2026-03-05 08:52:44 | rmartinez | 10.1.3.22 | SW-01-A | 7 | show interfaces | Permit |
| 2026-03-05 08:53:01 | rmartinez | 10.1.3.22 | SW-01-A | 7 | configure terminal | Deny |
| 2026-03-05 03:14:08 | unknown | 45.146.164.100 | ASA-EG-01 | — | — | Auth Fail |
| 2026-03-05 02:00:11 | achen | 10.1.3.30 | RT-EG-01-A | 1 | show version | Permit |
Users & Roles
Portal access and Active Directory group mapping
👤 Portal Users
| Username | Role | Source | Last Login | Status |
|---|---|---|---|---|
| admin | Super Admin | Local | Now | Active |
| rmartinez | NOC Engineer | Active Directory | 1h ago | Active |
| achen | Read Only | Active Directory | 3h ago | Active |
| rh-emergency | Break Glass | Local | Never | Standby |
AD Group Mapping
| AD Group | Portal Role | TACACS Priv | Members |
|---|---|---|---|
| NET-Admins | Super Admin | 15 | 2 |
| NOC-Team | NOC Engineer | 7 | 3 |
| IT-ReadOnly | Read Only | 1 | 5 |
System Settings
Branding, AD integration, and server configuration
🏢 Branding
🏛 Active Directory
ℹ System Information
VERSION
5NinesNet NMS v1.0.0
OS
Ubuntu 24.04 LTS
UPTIME
14 days, 6h 22m
CPU (NMS Server)
8% avg
MEMORY
1.2 GB / 8 GB (15%)
DISK
18 GB / 100 GB (18%)