LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 10-19-2003, 07:39 PM   #1
sabah
LQ Newbie
 
Registered: Aug 2003
Posts: 4

Rep: Reputation: 0
sniffing network traffic, linux server between firewall and router, only want http


Hello,
I was hoping someone could help me out.

I have a switch with port monitoring on, that a firewall, router, and linux box are connected too. I cannot replace either the router or the firewall.
What i want to do is take a "snapshot" of what webpages are being accessed by ip. We are using a windows nt4 dns server, so i cannot just log dns requests. Or as far as i know i cant.
All i really want to do is just get a filter up there to dump the first part of web traffic.
anyone know a better/way to do this?
Thanks
:P
 
Old 10-20-2003, 10:57 AM   #2
BaerRS
Member
 
Registered: Oct 2001
Location: Columbus, Ohio
Distribution: all.. but mainly SuSe--- looks like it changing to Red Hat
Posts: 119

Rep: Reputation: 15
tcpdump port 80,
or you can use ethereal, and filter for port 80

I think thats what your asking.. if this didnt help let me know...
 
Old 10-20-2003, 01:47 PM   #3
sabah
LQ Newbie
 
Registered: Aug 2003
Posts: 4

Original Poster
Rep: Reputation: 0
thanks for the reply,
yea that was what i was going to do but.. if i filter for just port 80 i get all the web traffic, what i really need is just what ip is going to what site.
i know that their are ways to specify what parts of conversations, I think the host header is sent in the < 4 so that is all i really would need. I just dont know how to do that in ethereal or tcpdump
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Traffic shaping (limiting outgoing bandwidth of all TCP-traffic except FTP/HTTP) ffkodd Linux - Networking 3 10-25-2008 01:09 AM
No HTTP traffic after changing to a new router jamesf303 Linux - Networking 5 05-26-2007 12:57 AM
Monitor indiviual users' network traffic from my firewall ? Dark Carnival Linux - Security 1 09-11-2005 12:21 PM
problem setting up router in linux http server mkepler1 Linux - Networking 1 12-18-2003 01:42 PM
sniffing 802.11g traffic yocompia Linux - Wireless Networking 0 11-22-2003 11:59 PM


All times are GMT -5. The time now is 04:11 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration