Security Basics mailing list archives

RE: Port watching tool

From: "Gaston, Ryder W" <Ryder.Gaston () ca com>
Date: Fri, 22 Aug 2003 15:34:00 -0400

http://www.portdetective.com/

Ryder Gaston

-----Original Message-----
From: Jeff Lane [mailto:crash () pinehurst net] 
Sent: Friday, August 22, 2003 12:07 PM
To: security-basics () securityfocus com
Subject: Port watching tool

Hello,

I have just a simple question... I have been searching aroud the net for

software to watch the ports on a Win2K machine but am not turning 
anything up that would be useful to me, so I thought I would ask here...

Could someone point me to a tool that will or can do the following:

A: monitor ports on a Win2K server
B: specifically monitor a certain port or range of ports
C: send email or some other alert when the number of open connections on

that port passes a certain threshold.

Basically I am trying to find something that will run on one of our 
Win2K servers and monitor the open connections on a couple ports, and 
notify us if there are too many connections on that port, and it would 
be even better to be able to have it notify if there are too many 
concurrent connections from a single IP..

Anyone know of something that will do this and run in the background?
-- 
Jeffrey Lane, RHCE
Systems Adminstrator
ConnectNC, Inc
DSL and Web hosting: http://www.connectnc.com
List your child-related organization Online!
http://www.sandhillskids.com

------------------------------------------------------------------------
---
------------------------------------------------------------------------
----

---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training),
October 1-2 (Briefings) in Tysons Corner, VA; the world's premier
technical IT security event.  Modeled after the famous Black Hat event in
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.
Symantec is the Diamond sponsor.  Early-bird registration ends September 6.Visit us: www.blackhat.com
----------------------------------------------------------------------------

Current thread:

Port watching tool Jeff Lane (Aug 22)
- <Possible follow-ups>
- RE: Port watching tool Gaston, Ryder W (Aug 22)
- Re: Port watching tool Jim Clare (Aug 22)
  - Re: Port watching tool Jeff Lane (Aug 25)
- RE: Port watching tool George Peek (Aug 25)
- RE: Port watching tool Dave Gonsalves (Aug 26)
  - Re: Port watching tool Logan Rogers-Follis - TNTNetworx.net (Aug 26)