1.3.4. ON Sensor Software
Based on IDS technology, the OpenNAC Sensor processes the traffic generated in the network. Performs deep analysis of network protocols that are being used by ingesting the traffic through a port mirror (SPAN, RSPAN, or ERSPAN).
When Secure Remote Access module is deployment, it performs the analysis of the VPN traffic received from the VPN Gateway through the VXLAN tunnel through the internal network.
ON Sensor is an optional component that provides Advanced Visibility and Network Behavior Monitoring.
It provides metadata of network traffic that is captured either by: - copying the traffic through the port mirror configured on the network device or - copying the traffic from the VPN Gateway inbound interface when the Secure Remote Access (2SRA) module is deployed. It is capable of decoding multiple standard protocols and applications, providing information from layer 2 to layer 7.
Note
ON Sensor is NOT a critical component of the solution, which is why it does NOT require high availability. If this component is outlined, the main functionality of OpenNAC Enterprise modules would continue to work. However, during the outlined period, we would no longer have advanced visibility, analysis, and monitoring of network behavior.
1.3.4.1. Sizing an ON Sensor Instance
The dimension of Network Access solution infrastructure can be directly inferred from the expected workload in terms of users, IPs, types of authentication, or use cases deployed that the NAC must sustain. The workload may be complicated to estimate, but this is a crucial exercise to build an efficient NAC Architecture. In general, increased capacity is achieved by adding more nodes of some component. The current user’s growth is achieved by adding more nodes in an N + 1 scheme through a load balancer.
When the network requires capturing 10 Gb, it is necessary to implement hardware sensors with cards compatible with accelerated drivers from pFring.
The minimum recommended specs for the ON Sensor are:
Resources |
Minium |
Recommended |
|---|---|---|
Memory |
16 GB |
64 GB |
CPU |
8 CPU |
16 CPU |
Disk Size |
200 GB |
300 GB* |
Disk Type |
SCSI/SATA |
SSD |
Network |
2 NIC and 1 NIC*** |
2 NIC and 1 NIC*** |
Note
* It depends on the amount of information that needs to be stored. *** In some cases, it is recommended to have at least 2 NICs for an active-passive port-span.
Supported Network Cards
Capacity |
Medium |
Network Card |
|---|---|---|
1Gb |
Copper |
Intel 8254x/8256x/8257x/8258x |
1Gb |
Fiber |
Intel 82575/82576/82580/I350 |
10Gb |
Fiber |
Intel 82599/X520/X540/X550 |
40Gb |
Fiber |
Intel X710/XL7100 |
1.3.4.2. Installed Packages
This section provides a comprehensive list of installed packages on the ON Sensor component, along with their respective descriptions. These packages play a crucial role in supporting various functionalities and services, ensuring a robust and efficient operating environment.
Package Name |
Description |
|---|---|
acl |
Access control list utilities for controlling POSIX user access to files and directories. |
alsa-lib |
The Advanced Linux Sound Architecture (ALSA) provides audio and MIDI functionality to the Linux operating system. |
apr |
Apache Portable Runtime library provides a predictable and consistent interface to underlying platform-specific implementations. |
apr-util |
Apache Portable Runtime Utility library provides various utilities and abstractions for APR. |
apr-util-bdb |
Berkeley DB driver for APR-util’s DBM routines. |
apr-util-openssl |
OpenSSL driver for APR-util’s DBM routines. |
atk |
ATK provides the set of accessibility interfaces that are implemented by other toolkits and applications. |
audit |
User space tools for storing and processing audit records generated by the audit subsystem in the Linux kernel. |
audit-libs |
Libraries used for generating and manipulating audit records. |
authselect |
A command-line utility for selecting system authentication resources. |
authselect-libs |
Libraries for authselect. |
avahi-libs |
Libraries for Avahi, a system which facilitates service discovery on a local network. |
basesystem |
The basic package that defines a simple Red Hat Enterprise Linux system. |
bash |
The GNU Bourne Again shell (bash) is a shell or command language interpreter that is compatible with the Bourne shell (sh). |
bind-export-libs |
Exported libraries for bind. |
bind-libs |
Libraries used by the BIND DNS packages. |
bind-libs-lite |
A stripped-down version of the BIND libraries for embedded systems. |
bind-license |
License of the BIND DNS suite. |
bind-utils |
Utilities for querying DNS name servers. |
binutils |
A GNU collection of binary utilities. |
biosdevname |
Udev helper for naming devices per BIOS names. |
bison |
A GNU general-purpose parser generator. |
brotli |
Brotli compression library and command-line tool. |
bzip2-libs |
Libraries for applications using bzip2 compression. |
ca-certificates |
The Mozilla CA certificate bundle. |
cairo |
A 2D graphics library. |
capstats |
A command-line tool to view and analyze the load distribution in a system. |
c-ares |
A library that performs DNS requests and name resolutions asynchronously. |
chkconfig |
A system tool for maintaining the /etc/rc*.d hierarchy. |
chrony |
An NTP client/server. |
collectd-disk |
Disk plugin for collectd, the system statistics collection daemon. |
compat-openssl10 |
A compatibility version of the OpenSSL library. |
copy-jdk-configs |
JDKs configuration files copier. |
coreutils |
A set of basic GNU tools commonly used in shell scripts. |
coreutils-common |
Core files for coreutils. |
cpio |
A GNU archiving program. |
cpp |
The C Preprocessor. |
cracklib |
A password-checking library. |
cracklib-dicts |
The standard CrackLib dictionaries. |
cronie |
Cron daemon for executing programs at set times. |
cronie-anacron |
Utility for running regular jobs. |
crontabs |
Root crontab files used to schedule the execution of programs. |
crypto-policies |
A set of policies for the various subsystems cryptography runtime. |
crypto-policies-scripts |
A set of scripts to help with migration to the new crypto policies. |
cryptsetup-libs |
Cryptsetup shared library. |
cups-libs |
CUPS printing system - libraries. |
curl |
A utility for getting files from remote servers (FTP, HTTP, and others). |
cyrus-sasl-lib |
The Cyrus SASL library. |
dbus |
D-BUS message bus system. |
dbus-common |
D-BUS message bus system (common files). |
dbus-daemon |
D-BUS message daemon. |
dbus-glib |
GLib bindings for D-Bus. |
dbus-libs |
Libraries for accessing D-BUS. |
dbus-tools |
D-BUS utilities. |
dejavu-fonts-common |
Common files for dejavu-fonts. |
device-mapper |
Device mapper utility. |
device-mapper-event |
Device mapper event support library. |
device-mapper-event-libs |
Device mapper event support library. |
device-mapper-libs |
Device mapper library. |
device-mapper-persistent-data |
Device mapper persistent data tools. |
dhcp-client |
Provides the ISC DHCP client daemon and dhclient-script. |
dhcp-common |
Common files used by ISC dhcp client and server. |
dhcp-libs |
Shared libraries used by ISC dhcp client and server. |
diffutils |
A GNU collection of diff utilities. |
dkms |
Dynamic Kernel Module Support Framework. |
dmidecode |
Tool to analyze BIOS DMI data. |
dnf |
Package manager. |
dnf-data |
Data files for DNF. |
dnf-plugins-core |
Core Plugins for DNF. |
dracut |
The event-driven initramfs infrastructure. |
dracut-config-rescue |
Dracut modules to build a dracut initramfs with only the ‘rescue’ image. |
dracut-network |
Dracut modules to build a dracut initramfs with network support. |
dracut-squash |
Dracut modules to build a dracut initramfs with squashfs support. |
e2fsprogs |
Utilities for managing the ext2, ext3, and ext4 file systems. |
e2fsprogs-libs |
Libraries for managing the ext2, ext3, and ext4 file systems. |
elfutils-debuginfod-client |
A client to connect to the elfutils debuginfod service. |
elfutils-default-yama-scope |
Default Ubuntu Yama LSM scope - shared library. |
elfutils-libelf |
Libraries to read and write ELF files. |
elfutils-libelf-devel |
Development libraries to handle compiled objects. |
elfutils-libs |
Libraries to read and write ELF files. |
emacs-filesystem |
The basic directory layout for Emacs. |
epel-release |
Extra Packages for Enterprise Linux repository configuration. |
ethtool |
Ethernet settings tool for network cards. |
expat |
An XML parser library. |
file |
A utility for determining file types. |
filebeat |
A lightweight shipper for forwarding and centralizing log data. |
file-libs |
Libraries for applications using libmagic. |
filesystem |
The basic directory layout for a Linux system. |
findutils |
The GNU versions of find utilities. |
firewalld |
A firewall daemon with D-BUS interface providing a dynamic customizable firewall. |
firewalld-filesystem |
The basic directory layout for the firewalld configuration files. |
flex |
A tool for creating scanners. |
fontconfig |
Library for font configuration. |
fontpackages-filesystem |
Directories for font configuration files. |
freetype |
A free and portable font rendering engine. |
fribidi |
A Free Implementation of the Unicode Bidirectional Algorithm. |
fstrm |
Frame Streams implementation in C. |
fuse |
A library that makes it possible to implement a filesystem in a userspace program. |
fuse-common |
Common files for filesystem in userspace library. |
fuse-libs |
Libraries for FUSE (Filesystem in Userspace). |
gawk |
The GNU version of the AWK text processing utility. |
gcc |
The GNU Compiler Collection - C and C++ frontends. |
gdbm |
A GNU set of database routines that use extensible hashing. |
gdbm-libs |
Libraries for GNU dbm. |
gdk-pixbuf2 |
An image loading library used with GTK+ v2. |
gdk-pixbuf2-modules |
Additional modules for gdk-pixbuf2. |
geolite2-city |
Geolocation database for city-level location. |
geolite2-country |
Geolocation database for country-level location. |
gettext |
GNU libraries and utilities for producing multi-lingual messages. |
gettext-libs |
Libraries for gettext. |
giflib |
A library for reading and writing GIF format image files. |
git |
A distributed version control system. |
git-core |
Core package of git with minimal functionality. |
git-core-doc |
Documentation files for git-core. |
glib2 |
A library of handy utility functions. |
glibc |
The GNU libc libraries. |
glibc-all-langpacks |
Meta package to install all available glibc langpacks. |
glibc-common |
Common binaries and locale data for glibc. |
glibc-devel |
Object files for development using standard C libraries. |
glibc-gconv-extra |
Non-essential GCONV (GNU iconv) modules for the GNU C Library. |
glibc-headers |
Header files for development using standard C libraries. |
gmp |
A GNU arbitrary precision library. |
gnupg2 |
Utility for secure communication and data storage. |
gnupg2-smime |
CMS encryption and signing tool and smart card support for GnuPG. |
gnutls |
A TLS/SSL communication library. |
gobject-introspection |
Introspection system for GObject-based libraries. |
gpgme |
A GnuPG Made Easy (GPGME) is a library designed to make access to GnuPG easier for applications. |
gpg-pubkey |
GPG keys of the CentOS 8 packages. |
gpg-pubkey |
GPG keys of the CentOS 8 packages. |
gpg-pubkey |
GPG keys of the CentOS 8 packages. |
gpm-libs |
Libraries for gpm. |
graphite2 |
A font rendering library. |
grep |
The GNU versions of grep pattern matching utilities. |
grub2-common |
Files shared by grub2 packages. |
grub2-pc |
The GRand Unified Bootloader, version 2. |
grub2-pc-modules |
GPT modules for GRUB. |
grub2-tools |
Tools for handling GRUB2 images. |
grub2-tools-efi |
EFI-based binary for GRUB. |
grub2-tools-extra |
Additional tools for GRUB. |
grub2-tools-minimal |
Minimalist package of grub2 tools. |
grubby |
Command line tool for updating bootloader configurations. |
gtk2 |
The GIMP ToolKit (GTK+), a library for creating graphical user interfaces for the X Window System. |
gtk-update-icon-cache |
Icon theme caching utility. |
gzip |
The GNU data compression program. |
hardlink |
A tool which replaces copies of a file with hardlinks. |
harfbuzz |
An OpenType text shaping engine. |
hdparm |
A utility for displaying and/or setting hard disk parameters. |
hicolor-icon-theme |
Basic requirement for icon themes. |
hiredis |
A minimalistic C client library for Redis. |
hostname |
Utility to set/show the host name or domain name. |
httpd |
Apache HTTP Server. |
httpd-filesystem |
The basic directory layout for the Apache HTTP server. |
httpd-tools |
Tools for use with the Apache HTTP Server. |
hwdata |
Hardware identification and configuration data. |
ima-evm-utils |
Utilities for the Linux Integrity Measurement Architecture (IMA). |
info |
A stand-alone TTY-based reader for GNU texinfo documentation. |
initscripts |
Scripts to bring up network interfaces and legacy init script. |
ipcalc |
IP subnet calculator. |
iproute |
Advanced IP routing and network device configuration tools. |
ipset |
Utilities for managing sets of IP or ports with iptables. |
ipset-libs |
Libraries for IP set. |
iptables |
Tools for managing Linux kernel packet filtering capabilities. |
iptables-ebtables |
iptables extension module to specify the bridge ethernet MAC address using the ebtables-like syntax. |
iptables-libs |
Libraries used by iptables. |
iptables-services |
Systemd unit files for iptables. |
iputils |
Network monitoring tools including ping. |
irqbalance |
CPU IRQ balancing daemon. |
isl |
Integer Set Library for the polyhedral model. |
iwl1000-firmware |
Firmware for Intel Wireless WiFi Link 1000 Series Adapters. |
iwl100-firmware |
Firmware for Intel Wireless WiFi Link 100 Series Adapters. |
iwl105-firmware |
Firmware for Intel Wireless WiFi Link 105 Series Adapters. |
iwl135-firmware |
Firmware for Intel Wireless WiFi Link 135 Series Adapters. |
iwl2000-firmware |
Firmware for Intel Wireless WiFi Link 2000 Series Adapters. |
iwl2030-firmware |
Firmware for Intel Wireless WiFi Link 2030 Series Adapters. |
iwl3160-firmware |
Firmware for Intel Wireless WiFi Link 3160 Series Adapters. |
iwl5000-firmware |
Firmware for Intel Wireless WiFi Link 5000 Series Adapters. |
iwl5150-firmware |
Firmware for Intel Wireless WiFi Link 5150 Series Adapters. |
iwl6000-firmware |
Firmware for Intel Wireless WiFi Link 6000 Series Adapters. |
iwl6000g2a-firmware |
Firmware for Intel Wireless WiFi Link 6000 G2a Series Adapters. |
iwl6050-firmware |
Firmware for Intel Wireless WiFi Link 6050 Series Adapters. |
iwl7260-firmware |
Firmware for Intel Wireless WiFi Link 7260 Series Adapters. |
jansson |
C library for encoding, decoding, and manipulating JSON data. |
jasper-libs |
Libraries for the JasPer JPEG-2000 codec. |
java-1.8.0-openjdk |
OpenJDK Runtime Environment 8. |
java-1.8.0-openjdk-headless |
The OpenJDK 8 runtime environment without display support. |
javapackages-filesystem |
Base filesystem layout for Java packages. |
jbigkit-libs |
JBIG1 lossless image compression library. |
jq |
Command-line JSON processor. |
json-c |
A JSON implementation in C. |
kbd |
Tools for configuring the console (keyboard, virtual terminals, etc.). |
kbd-legacy |
Legacy data for kbd package. |
kbd-misc |
Miscellaneous data for kbd. |
kernel |
The Linux kernel. |
kernel |
The Linux kernel. |
kernel |
The Linux kernel. |
kernel-core |
The core files needed for kernel development. |
kernel-core |
The core files needed for kernel development. |
kernel-core |
The core files needed for kernel development. |
kernel-devel |
Development package for building kernel modules to match the kernel. |
kernel-devel |
Development package for building kernel modules to match the kernel. |
kernel-devel |
Development package for building kernel modules to match the kernel. |
kernel-headers |
Header files for the Linux kernel for use by glibc. |
kernel-modules |
kernel modules to match the kernel. |
kernel-modules |
kernel modules to match the kernel. |
kernel-modules |
kernel modules to match the kernel. |
kernel-tools |
Assortment of tools for the Linux kernel. |
kernel-tools-libs |
Libraries for the kernel-tools. |
kexec-tools |
The kexec/kdump userspace component. |
keyutils-libs |
Linux Key Management Utilities (library). |
keyutils-libs-devel |
Linux Key Management Utilities (development files). |
kmod |
Kernel module management utilities. |
kmod-libs |
Libraries for kmod. |
kpartx |
Partition management tool for device-mapper devices. |
krb5-devel |
Development files needed to compile Kerberos 5 programs. |
krb5-libs |
The shared libraries used by Kerberos 5. |
less |
A text file viewer similar to more, but better. |
libacl |
Access control list utilities. |
libaio |
Linux-native asynchronous I/O access library. |
libarchive |
A library for reading and writing streaming archives. |
libattr |
Dynamic library for extended attribute support. |
libbasicobjects |
Basic object types for C. |
libblkid |
Block device ID library. |
libbpf |
BPF shared library. |
libbroker-devel |
Development files for libbroker. |
libbsd |
Library providing BSD-compatible functions for portability. |
libcap |
Library for getting and setting POSIX.1e capabilities. |
libcap-ng |
An alternate posix capabilities library. |
libcollection |
Collection data-type for C. |
libcom_err |
Common error description library. |
libcom_err-devel |
Development files for the libcom_err library. |
libcomps |
Library for package grouping. |
libcroco |
A CSS parsing and manipulation toolkit. |
libcurl |
A library for getting files from web servers. |
libdaemon |
Lightweight C library for daemons. |
libdatrie |
Double-array trie library. |
libdb |
The Berkeley DB database library (version 5) for C. |
libdb-utils |
Command line tools for managing Berkeley DB databases. |
libdhash |
Dynamic hash table. |
libdnf |
Library providing simplified interface to libsolv. |
libdrm |
Direct Rendering Manager runtime library. |
libedit |
The NetBSD Editline library. |
libestr |
Library for some string essentials. |
libevent |
Abstract asynchronous event notification library. |
libfastjson |
A fast JSON library for C. |
libfdisk |
Partitioning library for fdisk-like programs. |
libffi |
A portable foreign function interface library. |
libfontenc |
X.Org X11 libfontenc runtime library. |
libgcc |
GCC version 11 shared support library. |
libgcrypt |
A general-purpose cryptographic library. |
libgearman |
Development headers for gearmand. |
libgomp |
GCC OpenMP v5.0 shared support library. |
libgpg-error |
Library for common error values and messages in GnuPG components. |
libibverbs |
A library for direct userspace use of RDMA (InfiniBand/iWARP/RoCE) hardware. |
libidn2 |
Library to support IDNA2008 internationalized domain names. |
libini_config |
INI file parser. |
libjpeg-turbo |
A MMX/SSE2 accelerated library for manipulating JPEG image files. |
libkadm5 |
Kerberos 5 Administrative Libraries. |
libkcapi |
Kernel crypto API user-space interface library. |
libkcapi-hmaccalc |
HMAC calculation support library. |
libldb |
A schema-less, ldap like, API and database. |
liblzf |
Small data compression library. |
libmaxminddb |
C library for the MaxMind DB file format. |
libmd |
A library providing message digest functions. |
libmetalink |
Metalink library for C. |
libmnl |
Minimalistic Netlink communication library. |
libmodulemd |
Library for manipulating module metadata. |
libmount |
Device mounting library. |
libmpc |
Arithmetic library for MPC. |
libmspack |
Library for Microsoft compression formats. |
libndp |
Library for Neighbor Discovery Protocol. |
libnetfilter_conntrack |
Netfilter conntrack userspace library. |
libnfnetlink |
Netfilter netlink userspace library. |
libnfsidmap |
NFSv4 ID-name mapping library. |
libnftnl |
Netfilter Netlink Library. |
libnghttp2 |
Library for HTTP/2 protocol. |
libnl3 |
Convenience library for netlink sockets. |
libnl3-cli |
Command-line utilities for libnl3. |
libnsl2 |
Public client interface library for NIS(YP) and NIS+. |
libpcap |
A system-independent interface for user-level packet capture. |
libpcap-devel |
Development files for libpcap. |
libpciaccess |
PCI access library. |
libpipeline |
Pipeline manipulation library. |
libpkgconf |
Package compiler and linker metadata toolkit. |
libpng |
Library for manipulating PNG image format files. |
libpsl |
C library for the Public Suffix List. |
libpwquality |
Library for password quality checking and generation. |
libref_array |
Shared library for libref_array. |
librepo |
Library providing C and Python (libcURL like) API for downloading Linux repository metadata. |
libreport-filesystem |
Filesystem layout for libreport. |
libretls |
TLS/SSL library with modern features. |
libseccomp |
Enhanced seccomp library. |
libsecret |
Library for storing and retrieving passwords and other secrets. |
libselinux |
SELinux library and simple utilities. |
libselinux-devel |
SELinux development package. |
libselinux-utils |
SELinux utility library. |
libsemanage |
SELinux binary policy manipulation library. |
libsepol |
SELinux binary policy manipulation library. |
libsepol-devel |
SELinux binary policy manipulation library development files. |
libsigsegv |
Library for handling page faults in user mode. |
libsmartcols |
Formatting library for ls-like programs. |
libsolv |
Package dependency solver using a satisfiability algorithm. |
libss |
Command-line interface parsing library. |
libssh |
A library implementing the SSH2 protocol. |
libssh-config |
Config file for libssh client/server. |
libsss_autofs |
FreeIPA autofs back end library. |
libsss_certmap |
FreeIPA Certificate Mapping library. |
libsss_idmap |
FreeIPA ID Mapping library. |
libsss_nss_idmap |
FreeIPA NSS ID Mapping library. |
libsss_sudo |
FreeIPA Sudo library. |
libstdc++ |
GNU Standard C++ Library. |
libsysfs |
Library for interfacing with sysfs. |
libtalloc |
Library implementing a hierarchical, reference counted memory pool system. |
libtasn1 |
ASN.1 library. |
libtdb |
The tdb library. |
libteam |
Library for controlling team network device. |
libtevent |
The tdb library. |
libthai |
Thai language support routines. |
libtiff |
Library of functions for manipulating TIFF format image files. |
libtirpc |
Transport Independent RPC Library. |
libtool-ltdl |
Runtime libraries for GNU Libtool Dynamic Module Loader. |
libunistring |
GNU Unicode string library. |
libusbx |
Library for accessing USB devices. |
libuser |
A user and group account administration library. |
libutempter |
Library to record user sessions. |
libuuid |
Universally Unique Identifier library. |
libverto |
Main event loop library. |
libverto-devel |
Libraries and header files for libverto development. |
libX11 |
X.Org X11 libX11 runtime library. |
libX11-common |
X.Org X11 libX11 common files. |
libXau |
X.Org X11 libXau runtime library. |
libXcomposite |
X.Org X11 libXcomposite runtime library. |
libxcrypt |
Extended crypt library for descrypt, md5crypt, bcrypt. |
libxcrypt-devel |
Development files for the Extended crypt library. |
libXcursor |
X.Org X11 libXcursor runtime library. |
libXdamage |
X.Org X11 libXdamage runtime library. |
libXext |
X.Org X11 libXext runtime library. |
libXfixes |
X.Org X11 libXfixes runtime library. |
libXft |
X.Org X11 libXft runtime library. |
libXi |
X.Org X11 libXi runtime library. |
libXinerama |
X.Org X11 libXinerama runtime library. |
libxkbcommon |
X.Org X11 libxkbcommon runtime library. |
libxml2 |
Library providing XML and HTML support. |
libXrandr |
X.Org X11 libXrandr runtime library. |
libXrender |
X.Org X11 libXrender runtime library. |
libxslt |
Library providing the Gnome XSLT engine. |
libXtst |
X.Org X11 libXtst runtime library. |
libzstd |
Zstandard compression library. |
linux-firmware |
Firmware files for Linux. |
lksctp-tools |
User-space access to Linux Kernel SCTP. |
lmdb-libs |
Memory-mapped key-value database library. |
lm_sensors-libs |
Libraries for sensors. |
logrotate |
Rotates, compresses, removes, and mails system log files. |
lshw |
Hardware lister. |
lsscsi |
List SCSI devices (or hosts) and associated information. |
lua-libs |
Runtime libraries for Lua. |
lvm2 |
Userland logical volume management tools. |
lvm2-libs |
Shared libraries for LVM2. |
lz4-libs |
Libraries for LZ4 compression algorithm. |
lzo |
Data compression library with very fast (de)compression. |
m4 |
GNU macro processor. |
mailcap |
Helper application and MIME type associations for file types. |
make |
GNU make utility to maintain groups of programs. |
mariadb-connector-c |
MariaDB Connector/C is used to connect applications developed in C/C++ to MariaDB and MySQL databases. |
mariadb-connector-c-config |
Configuration for building packages that use the MariaDB Connector/C. |
memstrack |
Track memory usage of a program. |
microcode_ctl |
Microcode update utility for Intel processors. |
mod_http2 |
Apache HTTP/2 module for Apache HTTP Server. |
mozjs60 |
SpiderMonkey is the JavaScript engine used in Mozilla Firefox. |
mpfr |
C library for multiple-precision floating-point computations. |
nagios-common |
Files needed for both the Nagios server and the Nagios plugins. |
nagios-plugins |
Host/service/network monitoring program plugins for Nagios. |
nagios-plugins-dig |
Nagios plugin to check DNS server response time. |
nagios-plugins-http |
Nagios plugin to check HTTP service response time. |
nagios-plugins-load |
Nagios plugin to check system load. |
nagios-plugins-mysql |
Nagios plugin to check MySQL server response time. |
nagios-plugins-procs |
Nagios plugin to check number of processes. |
nano |
A small text editor. |
ncurses |
Ncurses libraries. |
ncurses-base |
Descriptions of common terminal types. |
ncurses-libs |
Ncurses libraries. |
ndpi |
Open source deep packet inspection software toolkit. |
netcat |
Reads and writes data across network connections, using TCP or UDP. |
net-snmp |
A collection of SNMP protocol tools and libraries. |
net-snmp-agent-libs |
The NET-SNMP runtime agent libraries. |
net-snmp-libs |
The NET-SNMP runtime libraries. |
net-snmp-utils |
Network management utilities using SNMP, from the NET-SNMP project. |
nettle |
A low-level cryptographic library. |
net-tools |
Basic networking tools. |
NetworkManager |
Network link manager and user applications. |
NetworkManager-initscripts-updown |
Legacy scripts for NetworkManager. |
NetworkManager-libnm |
Libraries for adding NetworkManager support to applications. |
NetworkManager-team |
Team device plugin for NetworkManager. |
NetworkManager-tui |
Text User Interface for NetworkManager. |
newt |
A development library for text mode user interfaces. |
nftables |
Netfilter Tables userspace utitilies. |
nginx-filesystem |
The basic directory layout for Nginx. |
nodejs |
JavaScript runtime built on V8 engine. |
nodejs-full-i18n |
Additional language support for Node.js. |
npm |
Node.js Package Manager. |
npth |
New GNU Portable Threads library. |
nspr |
Netscape Portable Runtime. |
nss |
Network Security Services. |
nss-softokn-freebl |
Network Security Services Freebl Library. |
nss-sysinit |
System NSS Initialization. |
nss-util |
Network Security Services Utilities Library. |
ntpstat |
Check Network Time Protocol (NTP) status. |
numactl |
Library for controlling NUMA policy. |
numactl-libs |
NUMA control library. |
oniguruma |
Regular expressions library. |
openldap |
LDAP support libraries. |
opennac-dhcp-helper-reader |
DHCP reader for OpenNAC. |
opennac-gpg-key |
OpenNAC GPG Key. |
opennac-healthcheck |
Healthcheck for OpenNAC. |
opennac-sensor |
OpenNAC Sensor. |
openssh |
An open-source SSH protocol suite of network connectivity tools. |
openssh-clients |
An open-source SSH protocol suite of network connectivity tools (clients). |
openssh-server |
An open-source SSH protocol suite of network connectivity tools (servers). |
openssl |
Utilities from the general purpose cryptography library with TLS implementation. |
openssl-devel |
Files for development of applications which will use OpenSSL. |
openssl-libs |
A general-purpose cryptography library with TLS implementation (shared libraries). |
openssl-pkcs11 |
PKCS#11 engine for OpenSSL. |
open-vm-tools |
Open Virtual Machine Tools for virtual machines hosted on VMware (binary). |
os-prober |
Probes disks on the system for installed operating systems. |
p11-kit |
Library for loading and sharing PKCS#11 modules. |
p11-kit-trust |
System trust module for p11-kit. |
pam |
A security tool that provides authentication for applications and services. |
pango |
System for layout and rendering of internationalized text. |
parted |
The GNU disk partition manipulation program. |
passwd |
An utility for setting or changing passwords using PAM. |
pciutils |
Linux PCI Utilities. |
pciutils-libs |
Linux PCI Library. |
pcre |
Perl-compatible regular expression library. |
pcre2 |
Perl-compatible regular expression library (version 2). |
pcre2-devel |
Development files for pcre2. |
pcre2-utf32 |
UTF32 library for pcre2. |
perl-Carp |
Perl module Carp, for printing error messages from perspective of caller. |
perl-constant |
Perl pragma to declare constants. |
perl-Data-Dumper |
Perl module to serialize/deparse data structures. |
perl-Digest |
Perl core module for cryptographic hashing. |
perl-Digest-MD5 |
Perl interface to the MD5 Algorithm. |
perl-Encode |
A character encoding scheme in Perl. |
perl-Errno |
Perl module providing access to system errno constants. |
perl-Error |
Perl module providing error/exception handling in an OO-ish way. |
perl-Exporter |
Perl module providing a general-purpose export facility for Perl modules. |
perl-File-Path |
Perl module for creating or removing directory trees. |
perl-File-Temp |
Perl module to generate temporary files or directories. |
perl-Getopt-Long |
Perl module for extended processing of command line options. |
perl-Git |
Perl interface to Git. |
perl-interpreter |
The Perl programming language interpreter. |
perl-IO |
Perl core module for accessing IO streams. |
perl-IO-Socket-IP |
Perl module implementing object-oriented IPv4/IPv6 sockets. |
perl-IO-Socket-SSL |
Perl module implementing object-oriented interface to SSL sockets. |
perl-libnet |
Perl module to manage network protocols. |
perl-libs |
Perl shared library files. |
perl-macros |
Perl macros for development. |
perl-MIME-Base64 |
Perl module for encoding and decoding MIME Base64 messages. |
perl-Mozilla-CA |
Bundle of CA certificates for Mozilla. |
perl-Net-SSLeay |
Perl module for using OpenSSL. |
perl-parent |
A base class for Perl metaclasses. |
perl-PathTools |
Perl module providing utilities for working with paths. |
perl-Pod-Escapes |
Perl module providing escaped characters for POD. |
perl-podlators |
Convert POD data to various output formats. |
perl-Pod-Perldoc |
Perl module providing perldoc command. |
perl-Pod-Simple |
Perl module for parsing POD (Plain Old Documentation) format. |
perl-Pod-Usage |
Perl module providing usage information. |
perl-Scalar-List-Utils |
Perl module containing common scalar and list utility subroutines. |
perl-Socket |
Perl core module for networking constants and support functions. |
perl-Storable |
Perl module for persistence of Perl data structures. |
perl-Term-ANSIColor |
Color screen output using ANSI escape sequences. |
perl-Term-Cap |
Perl module for Perl termcap access. |
perl-TermReadKey |
Perl module for simple terminal control. |
perl-Text-Tabs+Wrap |
Line wrapping to form simple paragraphs. |
perl-threads |
Perl interpreter-based threads. |
perl-threads-shared |
Perl extension for sharing data structures between threads. |
perl-Time-Local |
Perl module for computing time from local and GMT time. |
perl-Unicode-Normalize |
Unicode Normalization Forms. |
perl-URI |
Perl module to manipulate and access URI strings. |
pfring |
High-speed packet capturing library. |
pfring-dkms |
Kernel module for high-speed packet capturing. |
php |
PHP scripting language for creating dynamic web sites. |
php-cli |
Command-line interface for PHP. |
php-common |
Common files for PHP. |
php-fpm |
PHP FastCGI Process Manager. |
php-mbstring |
A module for PHP applications which need multi-byte string handling. |
php-opcache |
The Zend OPcache. |
php-pdo |
A database access abstraction module for PHP applications. |
php-pecl-igbinary |
Replacement for the standard PHP serializer. |
php-pecl-msgpack |
API for communicating with MessagePack serialization. |
php-pecl-redis5 |
PHP extension for communicating with the Redis key-value store. |
php-process |
Modules for PHP script using system process interfaces. |
php-xml |
A module for PHP applications which use XML. |
pigz |
Parallel implementation of gzip. |
pinentry |
Collection of simple PIN or passphrase entry dialogs. |
pkgconf-m4 |
M4 macros for pkgconf development. |
pkgconf-pkg-config |
A tool for determining compilation options. |
platform-python |
A Python interpreter for platform runtimes. |
platform-python-pip |
Package installer for Python. |
platform-python-setuptools |
Easily build and distribute Python packages. |
policycoreutils |
SELinux policy core utilities. |
polkit |
Authorization Framework. |
polkit-libs |
Libraries for polkit. |
polkit-pkla-compat |
Compatibility package for PolicyKit. |
popt |
Command line option parsing library. |
procps-ng |
System and process monitoring utilities. |
protobuf-c |
C bindings for Google Protocol Buffers. |
psmisc |
Utilities for managing processes on your system. |
python36 |
Interpreter for the Python programming language (v3.6). |
python39 |
Interpreter for the Python programming language (v3.9). |
python39-devel |
Libraries and header files needed for Python 3.9 development. |
python39-libs |
Python 3.9 runtime libraries. |
python39-pip |
Package installer for Python 3. |
python39-pip-wheel |
Wheels for python39-pip. |
python39-setuptools |
Easily build and distribute Python 3 packages. |
python39-setuptools-wheel |
Wheels for python39-setuptools. |
python3-bind |
A library for performing DNS queries. |
python3-configobj |
Config file reading, writing, and validation. |
python3-dateutil |
Powerful extensions to the standard datetime module. |
python3-dbus |
D-Bus Python3 bindings. |
python3-decorator |
A library to use decorators. |
python3-dnf |
Python 3 interface to DNF package manager. |
python3-dnf-plugins-core |
Core plugins for Python 3 interface to DNF. |
python3-firewall |
Python 3 bindings for firewalld DBus interface. |
python3-gobject-base |
Python 3 bindings for GObject. |
python3-gpg |
Python 3 bindings for GPGME. |
python3-hawkey |
Python 3 bindings for the hawkey library. |
python3-libcomps |
Python 3 bindings for libcomps library. |
python3-libdnf |
Python 3 bindings for the libdnf library. |
python3-libs |
Python 3 runtime libraries. |
python3-libselinux |
Python 3 bindings for libselinux. |
python3-linux-procfs |
Python 3 bindings for the Linux /proc filesystem. |
python3-nftables |
Python 3 library for nftables. |
python3-perf |
Python 3 bindings for libperf. |
python3-pip |
Package installer for Python 3. |
python3-pip-wheel |
Wheels for python3-pip. |
python3-ply |
Python 3 Lex and Yacc modules. |
python3-pyudev |
A Python binding to libudev. |
python3-rpm |
Python 3 bindings for apps which will manipulate RPM packages. |
python3-schedutils |
Python 3 bindings for the Linux scheduler. |
python3-setuptools |
Easily build and distribute Python 3 packages. |
python3-setuptools-wheel |
Wheels for python3-setuptools. |
python3-six |
Python 2 and 3 compatibility utilities. |
python3-slip |
Miscellaneous convenience, extension and workaround code for Python 3. |
python3-slip-dbus |
Convenience functions for dbus services. |
python3-syspurpose |
Python 3 bindings for the syspurpose library. |
python3-systemd |
Python 3 bindings for systemd. |
python3-unbound |
Python 3 module for Unbound DNS resolver. |
p11-kit |
Library for loading and sharing PKCS#11 modules. |
p11-kit-trust |
System trust module for p11-kit. |
pam |
A security tool that provides authentication for applications and services. |
pango |
System for layout and rendering of internationalized text. |
parted |
The GNU disk partition manipulation program. |
passwd |
An utility for setting or changing passwords using PAM. |
pciutils |
Linux PCI Utilities. |
pciutils-libs |
Linux PCI Library. |
pcre |
Perl-compatible regular expression library. |
pcre2 |
Perl-compatible regular expression library (version 2). |
pcre2-devel |
Development files for pcre2. |
pcre2-utf32 |
UTF32 library for pcre2. |
perl-Carp |
Perl module Carp, for printing error messages from perspective of caller. |
perl-constant |
Perl pragma to declare constants. |
perl-Data-Dumper |
Perl module to serialize/deparse data structures. |
perl-Digest |
Perl core module for cryptographic hashing. |
perl-Digest-MD5 |
Perl interface to the MD5 Algorithm. |
perl-Encode |
A character encoding scheme in Perl. |
perl-Errno |
Perl module providing access to system errno constants. |
perl-Error |
Perl module providing error/exception handling in an OO-ish way. |
perl-Exporter |
Perl module providing a general-purpose export facility for Perl modules. |
perl-File-Path |
Perl module for creating or removing directory trees. |
perl-File-Temp |
Perl module to generate temporary files or directories. |
perl-Getopt-Long |
Perl module for extended processing of command line options. |
perl-Git |
Perl interface to Git. |
perl-interpreter |
The Perl programming language interpreter. |
perl-IO |
Perl core module for accessing IO streams. |
perl-IO-Socket-IP |
Perl module implementing object-oriented IPv4/IPv6 sockets. |
perl-IO-Socket-SSL |
Perl module implementing object-oriented interface to SSL sockets. |
perl-libnet |
Perl module to manage network protocols. |
perl-libs |
Perl shared library files. |
perl-macros |
Perl macros for development. |
perl-MIME-Base64 |
Perl module for encoding and decoding MIME Base64 messages. |
perl-Mozilla-CA |
Bundle of CA certificates for Mozilla. |
perl-Net-SSLeay |
Perl module for using OpenSSL. |
perl-parent |
A base class for Perl metaclasses. |
perl-PathTools |
Perl module providing utilities for working with paths. |
perl-Pod-Escapes |
Perl module providing escaped characters for POD. |
perl-podlators |
Convert POD data to various output formats. |
perl-Pod-Perldoc |
Perl module providing perldoc command. |
perl-Pod-Simple |
Perl module for parsing POD (Plain Old Documentation) format. |
perl-Pod-Usage |
Perl module providing usage information. |
perl-Scalar-List-Utils |
Perl module containing common scalar and list utility subroutines. |
perl-Socket |
Perl core module for networking constants and support functions. |
perl-Storable |
Perl module for persistence of Perl data structures. |
perl-Term-ANSIColor |
Color screen output using ANSI escape sequences. |
perl-Term-Cap |
Perl module for Perl termcap access. |
perl-TermReadKey |
Perl module for simple terminal control. |
perl-Text-Tabs+Wrap |
Line wrapping to form simple paragraphs. |
perl-threads |
Perl interpreter-based threads. |
perl-threads-shared |
Perl extension for sharing data structures between threads. |
perl-Time-Local |
Perl module for computing time from local and GMT time. |
perl-Unicode-Normalize |
Unicode Normalization Forms. |
perl-URI |
Perl module to manipulate and access URI strings. |
pfring |
High-speed packet capturing library. |
pfring-dkms |
Kernel module for high-speed packet capturing. |
php |
PHP scripting language for creating dynamic web sites. |
php-cli |
Command-line interface for PHP. |
php-common |
Common files for PHP. |
php-fpm |
PHP FastCGI Process Manager. |
php-mbstring |
A module for PHP applications which need multi-byte string handling. |
php-opcache |
The Zend OPcache. |
php-pdo |
A database access abstraction module for PHP applications. |
php-pecl-igbinary |
Replacement for the standard PHP serializer. |
php-pecl-msgpack |
API for communicating with MessagePack serialization. |
php-pecl-redis5 |
PHP extension for communicating with the Redis key-value store. |
php-process |
Modules for PHP script using system process interfaces. |
php-xml |
A module for PHP applications which use XML. |
pigz |
Parallel implementation of gzip. |
pinentry |
Collection of simple PIN or passphrase entry dialogs. |
pkgconf-m4 |
M4 macros for pkgconf development. |
pkgconf-pkg-config |
A tool for determining compilation options. |
platform-python |
A Python interpreter for platform runtimes. |
platform-python-pip |
Package installer for Python. |
platform-python-setuptools |
Easily build and distribute Python packages. |
policycoreutils |
SELinux policy core utilities. |
polkit |
Authorization Framework. |
polkit-libs |
Libraries for polkit. |
polkit-pkla-compat |
Compatibility package for PolicyKit. |
popt |
Command line option parsing library. |
procps-ng |
System and process monitoring utilities. |
protobuf-c |
C bindings for Google Protocol Buffers. |
psmisc |
Utilities for managing processes on your system. |
python36 |
Interpreter for the Python programming language (v3.6). |
python39 |
Interpreter for the Python programming language (v3.9). |
python39-devel |
Libraries and header files needed for Python 3.9 development. |
python39-libs |
Python 3.9 runtime libraries. |
python39-pip |
Package installer for Python 3. |
python39-pip-wheel |
Wheels for python39-pip. |
python39-setuptools |
Easily build and distribute Python 3 packages. |
python39-setuptools-wheel |
Wheels for python39-setuptools. |
python3-bind |
A library for performing DNS queries. |
python3-configobj |
Config file reading, writing, and validation. |
python3-dateutil |
Powerful extensions to the standard datetime module. |
python3-dbus |
D-Bus Python3 bindings. |
python3-decorator |
A library to use decorators. |
python3-dnf |
Python 3 interface to DNF package manager. |
python3-dnf-plugins-core |
Core plugins for Python 3 interface to DNF. |
python3-firewall |
Python 3 bindings for firewalld DBus interface. |
python3-gobject-base |
Python 3 bindings for GObject. |
python3-gpg |
Python 3 bindings for GPGME. |
python3-hawkey |
Python 3 bindings for the hawkey library. |
python3-libcomps |
Python 3 bindings for libcomps library. |
python3-libdnf |
Python 3 bindings for the libdnf library. |
python3-libs |
Python 3 runtime libraries. |
python3-libselinux |
Python 3 bindings for libselinux. |
python3-linux-procfs |
Python 3 bindings for the Linux /proc filesystem. |
python3-nftables |
Python 3 library for nftables. |
python3-perf |
Python 3 bindings for libperf. |
python3-pip |
Package installer for Python 3. |
python3-pip-wheel |
Wheels for python3-pip. |
python3-ply |
Python 3 Lex and Yacc modules. |
python3-pyudev |
A Python binding to libudev. |
python3-rpm |
Python 3 bindings for apps which will manipulate RPM packages. |
python3-schedutils |
Python 3 bindings for the Linux scheduler. |
python3-setuptools |
Easily build and distribute Python 3 packages. |
python3-setuptools-wheel |
Wheels for python3-setuptools. |
python3-six |
Python 2 and 3 compatibility utilities. |
python3-slip |
Miscellaneous convenience, extension and workaround code for Python 3. |
python3-slip-dbus |
Convenience functions for dbus services. |
python3-syspurpose |
Python 3 bindings for the syspurpose library. |
python3-systemd |
Python 3 bindings for systemd. |
python3-unbound |
Python 3 module for Unbound DNS resolver. |