Security Basics mailing list archives
Re: Network Traffic Monitor
From: mike () genxweb net
Date: Fri, 30 Jul 2004 14:45:10 -0400
You can try tcpdump and just run it with flags of ports that you dont want to see. For a example if I am sshed into a box and i want to see all traffic except mine I could do tcpdump -i eth0 not host 68.x.x.x or tcpdump -i eth0 not host 68.x.x.x and not port 22. That may help you detect a increase of unusal traffic. Also you cna try snort and see if you see any increase in the logs of what could be attacks Quoting "Wolf, Tomas" <tomas () skip cz>:
Not for free, but Sniffer Pro can tell you a lot of things that are happening and it has also "layered". So one can look at the Data Link, Network, Transport or other layers and see what protocols are being used, see top-talkers in each protocol, bandwidth used, different percentages and so on... It has a lot of info. At first I thought that it is not very good tool, but over time I have changed my opinion. It has lot of good info, through which is easy to navigate and see what could be happening. Just a thought -- TomasI'm curious if anyone knows of any software Windows or Linux that can monitor all traffic going out of the network, particularly any unusual traffic. I had a computer infected with a mass mailing program that sent out enough traffic to lock up my firewall the other day, which is also the firewall for all our web/mail/app servers. Any ideas would be greatly appreciated. Thanks in advance. Network Layout T1's > Router > Firewall > Switches > All servers and PC's Jason Haith Systems Administrator Genesis Systems 5712 S. 77th St Omaha, NE 68127 Email: jhaith () genesissys com --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html------------------------------------------------------------------------------------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master theskillsof an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html------------------------------------------------------------------------------------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
--------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
Current thread:
- Re: Network Traffic Monitor Wolf, Tomas (Jul 30)
- Re: Network Traffic Monitor mike (Jul 30)
- RE: Network Traffic Monitor Chad Thomsen (Jul 31)