Network Monitoring Tools

Project

This project deploys a network monitoring tool within a Docker container on a Debian Linux server. The tool provides real-time visibility into network traffic, devices, and resource usage, and is accessible exclusively over the Local Area Network (LAN).

Network Setup

The monitoring tool runs inside a Docker container, mapped to a single port on the host machine’s LAN IP address. Access is restricted to trusted LAN subnets through firewall rules, ensuring only authorized devices can connect. Wireless networks are excluded, as their subnets are denied access.

For secure external access, a VPN with multi-factor authentication (MFA) is configured. Only designated VPN groups are permitted to connect, adding an additional layer of control and security.

Images

Network setup diagram — Network Setup Diagram

Security Setup

Access to the monitoring dashboard is protected with login credentials and MFA. Brute-force attempts are mitigated with account lockouts and login timeouts.

At the network layer, MAC filtering is enabled on switch ports to restrict connectivity to known endpoints, while unused ports remain disabled. Wireless and guest networks are segmented away from the monitoring subnet to prevent unauthorized access.

Images

Security configuration — Security Configurations

Notifications

Automated notifications are configured to alert administrators in real time of critical network events, outages, or anomalies. This enables proactive intervention before issues escalate into user-impacting incidents.

Usage

The tool is designed for system administrators to monitor traffic patterns, service availability, and device health, while also receiving timely alerts on network issues.

Professional Experience

In my professional IT roles, I work daily with enterprise-grade monitoring platforms, most notably PRTG Network Monitor. My responsibilities include:

Configuring sensors to monitor ports, services, uptime, and bandwidth utilization.
Tracking resource usage (CPU, memory, disk) across critical infrastructure.
Implementing custom checks for applications and APIs to ensure end-to-end availability.
Designing notification workflows that escalate incidents based on severity and impact.
Integrating monitoring systems with ticketing and alerting tools for efficient incident response.
Optimizing dashboards and reports to provide actionable insights for management and operations.

This experience allows me to design, deploy, and maintain monitoring environments that are scalable, secure, and proactive—whether in lab projects or enterprise production environments.