Iodine tunnels IPv4 data through a DNS server. This can be useful in different situations where internet access is firewalled, but DNS queries are allowed. The bandwidth is asymmetrical, with limited upstream and up to 1 Mbit/s downstream.

PageKite implements a tunneled reverse proxy which makes it easy to make a service (such as an HTTP or SSH server) on localhost visible to the wider Internet, even behind NAT or restrictive firewalls. A managed front-end relay service is available at https://pagekite.net/, or you can run your own.

VDE is a set of programs to provide virtual software-defined Ethernet network interface controllers across multiple virtual or physical, local or remote devices. The VDE architecture provides virtual counterparts to hardware components such as switches and cables.

This package provides a command-line client (gandi) to buy, manage, and delete Internet resources from Gandi.net such as domain names, virtual machines, and certificates.

This package provides a wireless network and device detector, sniffer, wardriving tool, and WIDS (wireless intrusion detection) framework. Kismet works with Wi-Fi interfaces, Bluetooth interfaces, some SDR (software defined radio) hardware like the RTLSDR, and other specialized capture hardware

Reaver performs a brute force attack against an access point's Wi-Fi Protected Setup (WPS) PIN. Once the PIN is found, the WPA passphrase can be recovered and the AP's wireless settings can be reconfigured.

Axel tries to accelerate the download process by using multiple connections per file, and can also balance the load between different servers. It tries to be as light as possible, so it might be useful on byte-critical systems. It supports HTTP, HTTPS, FTP and FTPS protocols.

Socket6 binds the IPv6 related part of the C socket header definitions and structure manipulators for Perl.

Tunctl is used to set up and maintain persistent TUN/TAP network interfaces, enabling user applications to simulate network traffic. Such interfaces are useful for VPN software, virtualization, emulation, simulation, and a number of other applications.

iPerf is a tool to measure achievable bandwidth on IP networks. It supports tuning of various parameters related to timing, buffers and protocols (TCP, UDP, SCTP with IPv4 and IPv6). For each test it reports the bandwidth, loss, and other parameters.

NetAddr::IP manages IPv4 and IPv6 addresses and subsets.

The Link Layer Discovery Protocol (LLDP) is an industry standard protocol designed to supplant proprietary Link-Layer protocols such as EDP or CDP. The goal of LLDP is to provide an inter-vendor compatible mechanism to deliver Link-Layer notifications to adjacent network devices. lldpd is an implementation of LLDP. It also supports some proprietary protocols.

Spiped (pronounced "ess-pipe-dee") is a utility for creating symmetrically encrypted and authenticated pipes between socket addresses, so that one may connect to one address (e.g., a UNIX socket on localhost) and transparently have a connection established to another address (e.g., a UNIX socket on a different system). This is similar to 'ssh -L' functionality, but does not use SSH and requires a pre-shared symmetric key.

Hashcash is a proof-of-work algorithm, which has been used as a denial-of-service countermeasure technique in a number of systems.

A hashcash stamp constitutes a proof-of-work which takes a parametrizable amount of work to compute for the sender. The recipient can verify received hashcash stamps efficiently.

This package contains a command-line tool for computing and verifying hashcash stamps.

Slurm is a network load monitor. It shows real-time traffic statistics from any network device in any of three ASCII graph formats.

wireproxy is a completely userspace application that connects to a wireguard peer, and exposes a socks5/http proxy or tunnels on the machine.

libndp contains a library which provides a wrapper for IPv6 Neighbor Discovery Protocol. It also provides a tool named ndptool for sending and receiving NDP messages.

Wireless networking GUI front-end for iwd, with supported functionality similar to that of iwctl. Features include viewing and connecting to available networks, managing known networks, provisioning new networks via WPS or Wi-Fi Easy Connect, and an indicator icon displaying connection status and signal strength.

OpenRDAP is a command line client for the Registration Data Access Protocol. RDAP is modern a replacement for WHOIS, which provides domain name and IP address registration information in JSON format over HTTP.

This package provides a C implementation of a lightweight application-protocol for devices that are constrained their resources such as computing power, RF range, memory, bandwidth, or network packet sizes. This protocol, CoAP, is standardized by the IETF as RFC 7252.

mbuffer is a tool for buffering data streams with a large set of features:

• direct support for TCP based network targets (IPv4 and IPv6)

• ability to send to multiple targets in parallel (distribution mode)

• support for multiple volumes

• I/O rate limitation

• high/low watermark based restart criteria

• configurable buffer size

• on the fly MD5 hash calculation

• highly efficient, multi-threaded implementation

Wireshark is a network protocol analyzer, or packet sniffer, that lets you capture and interactively browse the contents of network frames.

Quagga is a routing software suite, providing implementations of OSPFv2, OSPFv3, RIP v1 and v2, RIPng and BGP-4 for Unix platforms.

The Quagga architecture consists of a core daemon, zebra, which acts as an abstraction layer to the underlying Unix kernel and presents the Zserv API over a Unix or TCP stream to Quagga clients. It is these Zserv clients which typically implement a routing protocol and communicate routing updates to the zebra daemon.

NNG project is a rewrite of the scalability protocols library known as libnanomsg, and adds significant new capabilities, while retaining compatibility with the original. It is a lightweight, broker-less library, offering a simple API to solve common recurring messaging problems, such as publish/subscribe, RPC-style request/reply, or service discovery.