LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 04-19-2005, 06:02 AM   #1
overlord73
Member
 
Registered: Apr 2004
Location: ..where no life dwells..
Distribution: RH,FC/SuSE/Debian/HPUX/OSX
Posts: 511

Rep: Reputation: 30
howto log/monitor port-access?


hi all,

since a few days vnstat shows curious high traffic on my NIC. alway at the sime time (vnstat -h).
for example:
18.04. 166.34 MB | 17,592,186,042,732 MB | 17,592,186,042,898 MB

any easy ideas how to log or monitor port access for a defined time period?

till now I could not determine any ominous programms....!
 
Old 04-19-2005, 09:58 AM   #2
celejar
Member
 
Registered: Oct 2003
Location: New York
Distribution: Debian Sid
Posts: 185

Rep: Reputation: 30
Sniffers like Ethereal or tcpdump can monitor and capture traffic and even help you decipher it, although I don't think they'll identify the program transmitting.
 
Old 04-20-2005, 11:22 PM   #3
pAn1k
Member
 
Registered: Jun 2004
Location: Cala city
Distribution: Suse 10.0; Debian 5.0 (Lenny) Fluxbox
Posts: 240

Rep: Reputation: 30
Well, how I monitor specific port acces is through a terminal on my desktop with tail -f /var/messages | grep <whatever>. Works great, I usually have three transparent Eterms open showing whats going down. Have fun.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Strange results in /var/log/apache/access.log subt13 Linux - Security 2 08-03-2004 01:21 PM
howto monitor i386 serial-port pins? Mike Yates Linux - Hardware 0 06-29-2004 03:05 AM
Howto monitor network trafic on specific port MDanger Linux - Networking 2 03-31-2004 01:45 PM
I need a Advance Serial Port Monitor/Rcvr/Log sfingerh Linux - Software 5 04-09-2003 10:47 AM
howto log an installation of redhat? sengchao Linux - Newbie 1 02-03-2003 06:09 PM


All times are GMT -5. The time now is 05:45 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration