功能地圖Feature map
jt-ipam 全功能樹狀總覽(每次改版同步更新)。A tree overview of everything jt-ipam does (kept in sync each release).
- 區段 → 子網路 → IP 位址(階層管理、上下層繼承)Section → Subnet → IP (hierarchy & inheritance)
- 使用率與 IP 指示計(上線/離線/未知 即時方格)Utilization & live IP indicator grid
- 掃描代理:主動探測存活與作業系統(ICMP / ARP / 反查 / NetBIOS / mDNS / OS 偵測),代理 / 子網路 / IP 三層可設定、可立即執行、自動更新Scan agent: active liveness & OS probing (ICMP / ARP / rDNS / NetBIOS / mDNS / OS), per-agent/subnet/IP control, run-now & self-update
- DHCP 範圍標示、重疊網段偵測DHCP-range marking, overlap detection
- 失聯 IP 篩選與批次回收、子網路歸檔(連帶隱藏 IP)Stale-IP filter & bulk reclaim, subnet archive (hides its IPs)
- IP 異動記錄、主機名稱與作業系統多源優先序(掃描代理 / LibreNMS / Wazuh)IP change log, multi-source hostname & OS precedence (scan agent / LibreNMS / Wazuh)
- VLAN / VLAN Domain、VRFVLAN / VLAN Domain, VRF
- CSV 匯入;匯出 CSV / Markdown / PDF / Excel / ODS、欄位選擇CSV import; export CSV / Markdown / PDF / Excel / ODS, column picker
- 機房 / 地點:平面圖(拖拉定位/旋轉)、世界地圖、機櫃與裝置數Rooms / sites: floor plan (drag/rotate), world map, rack & device counts
- 機櫃:U 位圖、半 U、正面/背面切換、多格式匯出(SVG/PNG/drawio)Racks: U map, half-U, front/rear toggle, export (SVG/PNG/drawio)
- 裝置:連接埠、纜線多跳追蹤(Cable Trace)、佈線管理Devices: ports, multi-hop cable trace, cabling
- 電力:配電盤 → 饋線 → 插座、電力試算Power: panel → feed → outlet, power calculator
- Proxmox VE:叢集 / 節點 / VM、網路介面(bridge/bond/NIC)對應與追蹤Proxmox VE: clusters / nodes / VMs, NIC (bridge/bond) mapping & trace
整合(單向拉取)Integrations (pull-only)
- DNS、AdGuard、LibreNMS、WazuhDNS, AdGuard, LibreNMS, Wazuh
- OPNsense:防火牆規則 / 別名 / NAT、DHCP / ARP / OpenVPNOPNsense: firewall rules / aliases / NAT, DHCP / ARP / OpenVPN
- Graylog:記錄補主機名稱(Lookup Table)、稽核事件轉送(syslog/CEF/GELF)Graylog: log enrichment, audit forwarding (syslog/CEF/GELF)
- phpIPAM 遷移(SSH tunnel 匯入)phpIPAM migration (import over SSH tunnel)
- 網路拓樸圖(L3 推導、VPN 端點、篩選)Network topology (L3 inference, VPN endpoints, filters)
- 網路工具:CIDR 計算/切割/聚合、遮罩、EUI-64、MAC 格式、DNS 解析、郵件 DNS、GeoIPNet tools: CIDR calc/split/aggregate, netmask, EUI-64, MAC format, DNS lookup, mail DNS, GeoIP
- 站對站 VPN(WireGuard 公鑰配對 / IPsec 端點比對)Site-to-site VPN (WireGuard key pairing / IPsec match)
- OUI 廠商查詢(每月更新)OUI vendor lookup (monthly refresh)
- 本地 LLM Server 自然語言查詢(資料不外送)、MCP server 供外部 LLMLocal LLM Server NL queries (no data leaves), MCP server for external LLMs
- 語意搜尋(embedding + pgvector)、異常偵測、AI 異動前確認Semantic search (embedding + pgvector), anomaly detection, confirm-before-mutate
- 物件級 RBAC(7 類物件、階層繼承、內建角色、多單位/客戶隔離)Object-level RBAC (7 types, inheritance, built-in roles, multi-tenant isolation)
- 認證:argon2id + TOTP + JWT、API Token、LDAP/AD、SSO(OIDC/SAML)Auth: argon2id + TOTP + JWT, API tokens, LDAP/AD, SSO (OIDC/SAML)
- 稽核記錄(SHA-256 鏈)、系統記錄(systemd journal)、通知中心Audit log (SHA-256 chain), system logs (systemd journal), notifications
- 語系/時間偏好、表格欄位與釘選(跟著帳號存)Locale/time prefs, per-account table columns & pins
憑證集中保管與派送Certificate vault & distribution
- 集中保管憑證(私鑰 AES-GCM 加密)、自簽產生、上傳或貼上 PEM、到期/飄移告警Central cert vault (AES-GCM private keys), self-signed gen, upload or paste PEM, expiry/drift alerts
- 輕量代理(純 bash,只相依 curl)拉取派送:nginx / Apache / Caddy / Traefik / HAProxy / Postfix / Dovecot / Proxmox VE / PMG / PBS / PDM / Zimbra 等Lightweight agent (pure bash, curl-only) pulls & deploys: nginx / Apache / Caddy / Traefik / HAProxy / Postfix / Dovecot / Proxmox VE / PMG / PBS / PDM / Zimbra and more
- 套用前設定測試、失敗自動還原、部署後重載服務Config-test before apply, auto-rollback on failure, service reload after deploy
- URL / SFTP 來源定期自動同步、缺中繼/根憑證以系統信任庫自動補齊完整鏈Periodic URL / SFTP source sync, auto-complete missing intermediate/root chain from system trust store
- systemd + apt(可安裝於虛擬機 / 容器,實體機亦可)、預設強制 HTTPS、一行安裝/升級/移除腳本systemd + apt (installs on VMs / containers, or bare metal), HTTPS enforced, one-line install/upgrade/uninstall