Insight: Most Used Linux System Monitoring Tools Every SysAdmin Should Know
Let’s have a quick look into the list of some of the most used Linux system monitoring tools. Some of the tools/commands come pre-installed while some of the tools mentioned below need to be installed.
Most Used Linux System Monitoring Tools Every SysAdmin Should Know
top is a processing activity monitoring command for Linux. It gives you a real-time view of a running system.
Run the following command in Linux to execute the top command:
The vmstat command lets you know about processes, memory, traps, paging, block IO, and CPU activity.
Using ps command will help you to get a snapshot of the current processes. ps similar to top command it provides you the more information.
The pmap command in Linux displays the memory usage map of a process or multiple processes. Monitors the process memory usage on Linux. We need process id which we can get from ps or top command:
sudo pmap PID
netstat is a Linux network and statistics monitoring tool. It is a built-in tool which is used to list out the TCP network connections, routing tables and a number of network interfaces in the system.
iptraf command can be used to gather the real-time network statistics on the Linux system. You can easily figure out the TCP connection packet and byte count, TCP/UDP traffic breakdowns, interface statistics and activity indicators, and station packet and byte counts with this command.
This command is used for monitoring system input and system output. It helps to monitor Linux’s average CPU load and disk activity.
SAR or System Activity Report is a Unix System V-derived system monitor command which is used to check CPU activity, memory/paging, network, interrupts, device load and swap space utilization.
It is used to Monitor multiprocessor usage on Linux.
tcpdump is a common packet analyzer. tcpdump allows the user to display TCP/IP and other packets which is being transmitted or received over a network.
iotop is a Linux I/O monitoring tool. iotop tool is based on Python.
htop is similar to the top command. It is used to view the interactive process. It is a third party application.
iftop is a real-time network monitoring tool. It can be used to monitor network bandwidth.
nmon is short for Nigel’s performance Monitor for Linux on POWER. It displays and records local system information.
glances is an open source cross-platform monitoring tool for Linux based operating systems. It is written in python. glances can be used to monitor CPU, Network Interfaces, Load Average, Memory, Disk I/O, Processes and many more.
Nload is a command line tool which is mainly used to monitors the network throughput. Output of this tool can be seen in using two graphs, one for incoming and one for outgoing network.
yum install nload
sudo apt-get install nload
collectd is a daemon which collects system and application performance metrics periodically. This tool gathers metrics from various sources which can be used to monitor systems and find the possible bottlenecks.
CPUlimit is a small tool which monitors and then limits the CPU usage of a process. CPUlimit can be used to prevent a process from running for more than a specified time ratio.
stat is a builtin tool which is used for displaying various information of files and file systems. We can get the information like file modification date, access date and changed date too.
Webmin is a web-based system administration tool. You can easily setup users account, DNS, Apache, File sharing and many more job through a web browser.
MultiTail allows you to monitor logfiles and command output in multiple windows in a terminal. It uses colors to display the logfiles which make it easy to read for users.
GKrellm is a GUI application. It monitors the status of hardware such as CPU, hard disks, main memory, network interfaces.
GoAccess is an open-source tool that runs in a terminal in *nix systems or via a browser. It is a real-time web log analyzer and interactive viewer. It provides fast
Logwatch is a customizable log analysis system.It parses through the system’s logs and creates a report analyzing areas that you specify.
mpstat is a built-in tool for CPU usage monitoring. mpstat can also get an interval update of the CPU usage for you.
Justniffer is a network protocol analyzer. It captures network traffic and produces logs. It gives you the option to choose whether to collect low-level data or high-level data with this sniffer.
TCPdump is a powerful command-line packet analyzer.
Nmap stands for “Network Mapper”. Nmap allows you to scan your server for open ports. You can also check SQL injection vulnerabilities, network discovery and others.
Darkstat captures network traffic, calculates statistics about usage, and serves reports over HTTP.
- Traffic graphs, reports per host, shows ports for each host.
- Embedded web-server with deflate compression.
- Asynchronous reverse DNS resolution using a child process.
- Small. Portable. Single-threaded. Efficient.
- Supports IPv6.
Simple Network Management Protocol (SNMP) is a widely used protocol for monitoring the health and welfare of network equipment (eg. routers), computer equipment and even devices like UPSs. Net-SNMP is a suite of applications used to implement SNMP v1, SNMP v2c and SNMP v3 using both IPv4 and IPv6.
SmokePing can be used to track of network latency. It is loaded with plenty of features like,Interactive graph explorer, Wide range of latency measurement plugins, Live Latency Charts with the most ‘interesting’ graphs and many more.
Shinken is a monitoring framework. It is a Nagios compatible monitoring framework, written in Python and can be used to monitor your servers and applications.