Ken Hawkins wrote: > > Thanks, but I already have a basic monitor like that....I was looking > more along the line of traffic analysis; others I've talked to are also > seeing a lot of traffic, basically network "noise" but we would like to > track it down to see which NIC/IP address the traffic is from/to. > Perhaps a gnutella server; we had to shut a couple of these down before. > > K
KEN, It sounds like you are looking for some kind of network "sniffer", and if that is the case, I would suggest something along the lines of Ethereal or DSNIFF. A network sniffer will capture and analyze network packets, showing headers and payload. If your interest is in finding out if a SYN, ACK, FIN, etc, flag is set in the packet header, or you want to see from what machine (PORT, IP ADDRESS, MAC) the packet came from, and to see the destination machine (PORT, IP ADDRESS, MAC) of the packet, network sniffers are what you use. You can, as well, glean a lot of other network info from running a sniffer too. Happy sniffing, drjung -- J. Craig Woods UNIX/NT Network/System Administration http://www.trismegistus.net/resume.html Character is built upon the debris of despair --Emerson
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
