[NTLUG:Discuss] RE: Traffic Sniffers
MadHat
madhat at unspecific.com
Wed Aug 21 14:18:07 CDT 2002
On Wed, 2002-08-21 at 13:33, chris.gamble at CPBINC.com wrote:
> I guess what I'm trying to do would have been useful. Basically, Im looking
> for the ability to dump and save ethereal or tcpdump style recordings to and
> from a file. Then use that data to create charts and graphs to show
> filterable network usage (so that I can see how much traffic host a sent to
> host b over a selected time period.)
>
> Basically I'm looking to start with a package that can summarize like below
> (with the ability to filter for only certain hosts)
>
> 4k x
> 3k x
> 2k x
> 1k x
> 12:00 pm 1:00 pm 2:00pm 3:00pm
>
> Any other graphs to help understand the nature of ip related traffic would
> be nice.
>
> None of this is part of my job, I just like to study networks on the side
> for personal interest.
aaahhhhh....
OK.
tcpstat can do some TCP traffic.
I found you can download it from here:
http://online.securityfocus.com/tools/1469
but I am not sure if it has what you want.
I can't compile ksnuffle either.
What did ntop not do for you?
as Rev mentioned, you can do some of that with SNMP and MRTG on your
interface, but it polls the SNMP daemon on a rgular basis and will not
work off of stored data. And it will only report whatever SNMP MIBS are
supported, so I am not sure it will break it down the way you want.
--
MadHat at Unspecific.com
"Anyone who understands Linux/Unix, really understands the universe.
Anyone who understands Windows, really understands Windows."
- Richard Thieme, DefCon 10, 2002
More information about the Discuss
mailing list