Skip to main content

EXTENSIONS

User-built models, drivers, vaults, and reports — the parts that plug into swamp.

Filter by what you need and pull what fits.

Selection
28 results
label:networking

Azure

@dougschaefer/azure · v2026.07.06.1

Azure infrastructure management via az CLI — 32 model types covering compute, networking, data, security, RBAC, Azure Policy, Defender for Cloud, Entra directory, monitoring, DNS, DevOps, subscription-wide topology with Mermaid diagrams and cost estimation, and the Azure AI Vision Face REST API for identity-aware room services.

upd Jul 628 pullsA100/100

Cml

@calcuttin/cml · v2026.07.01.6

Cisco Modeling Labs (CML) controller automation — sync lab/node/link inventory, import topologies, and manage lab lifecycle via the CML REST API.

upd Jul 13 pullsA100/100

Incontrol

@ryan/incontrol · v2026.06.29.1

Peplink InControl 2 cloud management for swamp — organization/device inventory (including offline devices), full Starlink dish telemetry (obstruction + physical alignment with computed aim-offset), GPS location, connected clients, bandwidth-usage history, and raw API passthrough. OAuth2 client-credentials auth against api.ic.peplink.com.

upd Jun 290 pullsD50/100

Cisco Ios Switch

@dougschaefer/cisco-ios-switch · v2026.06.29.1

Manage a Cisco IOS switch (e.g. Catalyst 2960) over SSH after console bootstrap — capture running-config and device facts, run verification commands, and push idempotent baselines: secure-access hardening, SNMPv2c, and Layer-3/VLAN/access-port config. Shells out to OpenSSH; vault-resolved credentials; live reachability pre-flight check.

upd Jun 292 pullsA100/100

Netgear M4250

@dougschaefer/netgear-m4250 · v2026.06.29.1

Manage a NETGEAR M4250 (AV Line) managed switch over its SSH CLI — capture running-config and device facts, run verification show-commands (VLANs, ports, PoE, MAC table, LLDP, IGMP snooping), apply IGMP-querier and multicast-containment config, and force/restore a port's speed-duplex. Prompt-paced I/O for the M4250's interactive shell, vault-resolved credentials, shells out to OpenSSH.

upd Jun 290 pullsA100/100

Eero Network

@dougschaefer/eero-network · v2026.06.29.1

Eero mesh WiFi management via cloud API — network health, per-node status, per-client band/signal/channel diagnostics, speed tests, settings management, and raw API passthrough. Reverse-engineered from the eero mobile app API.

upd Jun 299 pullsA100/100

Opnsense Firewall

@dougschaefer/opnsense-firewall · v2026.06.29.1

Full OPNsense management via REST API — system status, interfaces, DNS, tunables, services, firmware/plugins, firewall states, DHCP leases, ARP table, Tailscale, WireGuard, and raw API passthrough. Replaces MCP server.

upd Jun 299 pullsA100/100

Aws/networking

@webframp/aws/networking · v2026.06.21.1

Inspect VPC networking resources that commonly generate hidden costs:

upd Jun 2566 pullsA100/100

Tailscale/net

@josephholsten/tailscale/net · v2026.06.22.1

Tailscale tailnet device inventory via the API — sync all devices, delete stale entries

upd Jun 225 pullsA100/100

Tailscale

@bitgnome/tailscale · v2026.06.21.1

Tailscale for swamp: a `setup-tailscale` workflow that installs Tailscale and joins hosts of an @swamp/ssh fleet to the tailnet (auth key via vault + SSH env), plus a `net` model that syncs `tailscale status --json` into one resource per machine so downstream models and workflows can look up nodes by name.

upd Jun 216 pullsA100/100

Tailscale/device

@josephholsten/tailscale/device · v2026.06.18.1

Tailscale TCP serve rule management via SSH — sync, set, unset

upd Jun 180 pullsA100/100

Peplink

@ryan/peplink · v2026.06.15.2

Peplink router management — WAN status, cellular signal diagnostics, band/carrier scanning, manual carrier steering (and revert to auto), SpeedFusion Connect monitoring, Starlink dish control, and raw API passthrough. Works with any Peplink router running firmware 8.5+.

upd Jun 162 pullsD50/100

Kubernetes

@swamp/kubernetes · v2026.06.10.1

Kubernetes operational toolkit — 15 model types covering pods, deployments, services, RBAC, storage, networking, autoscaling, batch jobs, and more. Includes 14 ready-to-run workflows for namespace debugging, security audits, RBAC analysis, cluster health, and operational diagnostics.

upd Jun 10370 pullsunscored

Unifi

@mccormick/unifi · v2026.06.09.1

Custom/static DNS records on a local UniFi Network controller.

upd Jun 95 pullsA100/100

Ruckus

@easel/ruckus · v2026.05.27.3

Sync a Ruckus Unleashed wireless controller into swamp as queryable data. The extension SSHes into the Unleashed master, drives its interactive CLI through a prompt-matching state machine (Unleashed accepts SSH `none` auth and prompts for app-level login on the remote pty, so no `sshpass` or pty wrapper is required), and writes one resource per controller, access point, and WLAN.

upd May 2710 pullsB85/100

Luxul Switch

@dougschaefer/luxul-switch · v2026.05.27.1

Monitor a Luxul AMS-series managed switch (e.g. AMS-1208P) over SNMP v2c — device facts, per-port link/error telemetry, and PoE main-budget headroom. Built for AV-over-IP racks carrying Crestron NVX endpoints, where PoE budget and link health drive stream reliability. Read-only; vault-resolved SNMP community.

upd May 270 pullsA100/100

Tailscale

@keeb/tailscale · v2026.05.25.1

Install Tailscale on remote VMs over SSH and sync tailnet machine inventory from tailscale status JSON into per-machine resources.

upd May 253.6k pullsA100/100

Porkbun

@magistr/porkbun · v2026.05.25.1

Porkbun DNS record management with full CRUD for all common record types

upd May 251 pullsA100/100

Aws Cost Audit

@webframp/aws-cost-audit · v2026.05.24.1

AWS cost audit workflow — identifies infrastructure waste by combining

upd May 2428 pullsA100/100

Nginx

@keeb/nginx · v2026.05.23.1

Configure nginx as a TCP/UDP stream proxy on a remote host over SSH, with bootstrap and per-service proxy configuration.

upd May 2322 pullsA100/100

Dns Policy

@lint/dns-policy · v2026.05.22.1

DNS policy compiler — merge manual vhosts + auto-discovered proxy hosts + static rewrites into a deduped desired list for an internal-DNS reconciler (e.g. AdGuard Home), plus a separate hostname list for public exposure.

upd May 2217 pullsA100/100

Nginx Proxy Manager

@lint/nginx-proxy-manager · v2026.05.21.2

Nginx Proxy Manager API wrapper — snapshot proxy hosts / redirection hosts / certificates, upsert proxy hosts idempotently (match by domain set), and delete proxy hosts by id.

upd May 216 pullsA100/100

Adguard

@lint/adguard · v2026.05.21.1

AdGuard Home control-API wrapper — snapshot status/stats/clients/rewrites and reconcile DNS rewrites to a desired set.

upd May 2119 pullsA100/100

Pihole

@magistr/pihole · v2026.05.21.1

Pi-hole custom DNS record management for swamp — list, add, delete, and

upd May 2135 pullsA100/100