conn-check – A deployment utility to check connectivity between services
conn-check is a small utility, written in Python using the Twisted network library, that verifies outgoing connections from your application servers to services it depends on, e.g. databases, caches, web service APIs, etc.
conn-check is used not only to verify network dependency changes at deploy time, and during each step in a CI/CD pipeline, but can also be used in continuous monitoring, e.g. with tools like Nagios.
Useful tool based on python for performing connection checks between services. I think that when deploying an environmen that this could be used to test all points in the network graph.
But for automated firewall deployment tooling, this would be highly useful:
conn-check’s original purpose, as part of the UbuntuOne project, was to verify holes were poked in the production firewalls at deploy time to allow connections to various dependencies, such as the Amazon S3 API, 7digital, internal Cassandra, memcached, PostgreSQL, and other internal web services. However, it now also provides a general purpose utility for visibility of connectivity to services your app requires, and even has tooling for modifying firewalls, generating configurations from app frameworks, and even the ability to generate configuration from a live environment using packet sniffing.
Quick HTML preso that overviews the tool : https://1stvamp.github.io/conn-check-talk/