Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
A Next-Gen Topology Visualization Plugin for NetBox Powered by topoSphere SDK.
NextBox UI is a Next Generation topology visualization plugin for NetBox powered by topoSphere SDK.
The Plugin delivers adaptive and scalable network topology maps, featuring advanced auto-layout algorithms, extended Filters, and multiple export options. Designed for efficiency and flexibility, NextBox UI enhances the visualization and management of complex network infrastructures within NetBox, providing users with intuitive tools to customize views, streamline network planning, and facilitate comprehensive data analysis.
Now with Dark Mode!
Newest NextBox UI Plugin versions 1.X support NetBox 4.1.
Legacy NextBox UI Plugin version 0.15 supports NetBox 3.5-4.1.
General installation steps and considerations follow the official guidelines.
Assuming you use a Virtual Environment for Netbox:
$ source /opt/netbox/venv/bin/activate
(venv) $ pip3 install nextbox-ui-plugin
The source code is available on GitHub.
Download and install the package. Assuming you use a Virtual Environment for Netbox:
$ git clone https://github.com/iDebugAll/nextbox-ui-plugin
$ cd nextbox-ui-plugin
$ source /opt/netbox/venv/bin/activate
(venv) $ pip3 install .
To ensure NextBox UI plugin is automatically re-installed during future upgrades, create a file named local_requirements.txt
(if not already existing) in the NetBox root directory (alongside requirements.txt
) and list the nextbox-ui-plugin
package:
# echo nextbox-ui-plugin >> local_requirements.txt
In a global Netbox configuration.py configuration file, update or add PLUGINS parameter:
PLUGINS = [
'nextbox_ui_plugin',
]
Optionally, update a PLUGINS_CONFIG parameter in configuration.py to rewrite default plugin behavior:
#PLUGINS_CONFIG = {
# 'nextbox_ui_plugin': {
# 'layers_sort_order': (
# ADD YOUR SETTINGS HERE
# layer_sort_order is a tuple
# ),
# 'icon_model_map': {
# ADD YOUR SETTINGS HERE
# icon_model_map is a dict
# },
# 'icon_role_map': {
# ADD YOUR SETTINGS HERE
# icon_role_map is a dict
# }
# 'INITIAL_LAYOUT': 'auto' # or 'layered'
# }
#}
By default, the Plugin orders devices on a visualized topology based their roles in Netbox device attributes.
This order may be controlled by 'layers_sort_order' parameter. Default sort order includes most commonly used naming conventions:
(
'undefined',
'outside',
'border',
'edge',
'edge-switch',
'edge-router',
'core',
'core-router',
'core-switch',
'distribution',
'distribution-router',
'distribution-switch',
'leaf',
'spine',
'access',
'access-switch',
)
By default, the Plugin automatically tries to identify the device icon type based on following logic:
{
'switch',
'router',
'firewall',
'wlc',
'unknown',
'server',
'phone',
'nexus5000',
'ipphone',
'host',
'camera',
'accesspoint',
'groups',
'groupm',
'groupl',
'cloud',
'unlinked',
'hostgroup',
'wirelesshost',
}
{
'CSR1000V': 'router',
'Nexus': 'switch',
'IOSXRv': 'router',
'IOSv': 'switch',
'2901': 'router',
'2911': 'router',
'2921': 'router',
'2951': 'router',
'4321': 'router',
'4331': 'router',
'4351': 'router',
'4421': 'router',
'4431': 'router',
'4451': 'router',
'2960': 'switch',
'3750': 'switch',
'3850': 'switch',
'ASA': 'firewall',
}
Keys are searched substrings. Values should be valid icon types as listed above.
{
'border': 'router',
'edge-switch': 'switch',
'edge-router': 'router',
'core-router': 'router',
'core-switch': 'switch',
'distribution': 'switch',
'distribution-router': 'router',
'distribution-switch': 'switch',
'leaf': 'switch',
'spine': 'switch',
'access': 'switch',
'access-switch': 'switch',
}
Device layers are ordered automatically by default. You can control this behavior with INITIAL_LAYOUT plugin parameter. Valid options are 'layered', and 'auto'.
'auto' layout relies on topoSphere best-effort algorithms. It spreads the Nodes across the view so they would be as distant from each other as possible.
The Plugin contains static files for topology visualization. They should be served directly by the HTTP frontend. In order to collect them from the package to the Netbox static root directory use the following command:
(venv) $ cd /opt/netbox/netbox/
(venv) $ python3 manage.py collectstatic
Restart the WSGI service to apply changes:
sudo systemctl restart netbox
The Plugin may be installed in a Netbox Docker deployment.
The package contains a Dockerfile for Netbox-Community Docker extension. Latest-LDAP version is used by default as a source.
Download the Plugin and build from the source:
$ git clone https://github.com/iDebugAll/nextbox-ui-plugin
$ cd nextbox-ui-plugin
$ docker build -t netbox-custom .
Update a netbox image name in docker-compose.yml in a Netbox Community Docker project root:
services:
netbox: &netbox
image: netbox-custom:latest
Update a configuration.py. It is stored in netbox-docker/configuration/ by default. Update or add PLUGINS parameter and PLUGINS_CONFIG parameter as described above.
Rebuild the running docker containers:
$ cd netbox-docker
$ docker-compose down
$ docker-compose up -d
Netbox Community Docker setup performs static file collection and database migrations on every startup. No manual actions are required.
If you are experiencing some unexpected errors or visual behaviors after the installation or upgrade, please make sure that you execute the following steps first:
(venv) $ python3 manage.py collectstatic --clear
.(venv) $ python3 manage.py migrate
.Once installed and initialized, the Plugin will be available via Topology Viewer main menu item in NetBox.
The Plugin requires the following user permissions to access the topology view:
Plugin code is published under MIT license. Embedded topoSphere SDK bundle is published under proprietary license special for NextBox UI Plugin and NetBox Community free of charge.
FAQs
A Next-Gen Topology Visualization Plugin for NetBox Powered by topoSphere SDK.
We found that nextbox-ui-plugin demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.