Retis Tracing delves into filtering packets in the Linux networking stack using eBPF probes to interface with control and data paths like OvS or Netfilter. It offers better visibility into complex single-host topologies, allowing for debugging, exploring the Linux networking stack, and testing features. Notably, it does not require compilation on the target and offers post-processing abilities. By collecting packet events from network devices, Retis allows for packet journey reconstruction. Advanced features include retrieving conntrack information, monitoring dropped packets, generating pcap files, and allowing post-processing scripts in Python. Retis is open for contributions under GPL v2.
https://github.com/retis-org/retis