Review your favorite Linux distribution.
Go Back > Forums > Linux Forums > Linux - Networking
User Name
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.


  Search this Thread
Old 10-19-2003, 06:39 PM   #1
LQ Newbie
Registered: Aug 2003
Posts: 4

Rep: Reputation: 0
sniffing network traffic, linux server between firewall and router, only want http

I was hoping someone could help me out.

I have a switch with port monitoring on, that a firewall, router, and linux box are connected too. I cannot replace either the router or the firewall.
What i want to do is take a "snapshot" of what webpages are being accessed by ip. We are using a windows nt4 dns server, so i cannot just log dns requests. Or as far as i know i cant.
All i really want to do is just get a filter up there to dump the first part of web traffic.
anyone know a better/way to do this?
Old 10-20-2003, 09:57 AM   #2
Registered: Oct 2001
Location: Columbus, Ohio
Distribution: all.. but mainly SuSe--- looks like it changing to Red Hat
Posts: 119

Rep: Reputation: 15
tcpdump port 80,
or you can use ethereal, and filter for port 80

I think thats what your asking.. if this didnt help let me know...
Old 10-20-2003, 12:47 PM   #3
LQ Newbie
Registered: Aug 2003
Posts: 4

Original Poster
Rep: Reputation: 0
thanks for the reply,
yea that was what i was going to do but.. if i filter for just port 80 i get all the web traffic, what i really need is just what ip is going to what site.
i know that their are ways to specify what parts of conversations, I think the host header is sent in the < 4 so that is all i really would need. I just dont know how to do that in ethereal or tcpdump


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Monitor indiviual users' network traffic from my firewall ? Dark Carnival Linux - Security 2 04-01-2016 01:59 PM
Traffic shaping (limiting outgoing bandwidth of all TCP-traffic except FTP/HTTP) ffkodd Linux - Networking 3 10-25-2008 12:09 AM
No HTTP traffic after changing to a new router jamesf303 Linux - Networking 5 05-25-2007 11:57 PM
problem setting up router in linux http server mkepler1 Linux - Networking 1 12-18-2003 12:42 PM
sniffing 802.11g traffic yocompia Linux - Wireless Networking 0 11-22-2003 10:59 PM > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 09:35 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration