On Wed, 9 Aug 2006, gentuxx wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
[EMAIL PROTECTED] wrote:
this has been a fascinating conversation. thanks boris for starting it.
i've tested almost everything that has been mentioned.
i often have to monitor my computers over slow text-only ssh
sessions, so my
focus may be a bit different from others.
tcpdump (and ethereal/wireshark) of course can not be beat for
looking inside
packets.
to see what connections are open and how much data they are
transferring, in a
telnet/ssh situation i like bmon and iftop. i especially appreciate the
"graphical" feature of bmon.
in real graphical environments, i like etherape.
thanks to everyone who has contributed so much wisdom
On Thu, 10 Aug 2006, Norman Rie? wrote:
Boris Sobolev schrieb:
Hi folks,
I would like to see the network activoity going in an out of my box.
Any command to use for that?
Thanks.
Boris
iftop
is nice to watch, what connetions are currently open an how many
traffic they produce.
--
[email protected] mailing list
For the graphically challenged, or the CLI initiated, try bwm-ng. I
initially came across it because of its mention on Richard Bejtlich's
blog. And fortunately there was an ebuild for it in portage! But
it's a pretty cool tool, nonetheless.
I too have tried a few of the different tools mentioned. I have loved
etherape for quite some time (years). Good to know that there's an
ebuild for it! I had almost forgotten all about it until Michael
mentioned it.
- --
gentux
another 2 great advantages of etherape:
1. looks cool
2. i think our brains can better process a lot of information as visual
patterns. i have to concentrate more to read all the fields in iftop or bmon,
but a quick glance at etherape gives me a very good sense of "it looks ok" or
"something seems wrong". etherape is one of those things i always like to
leave running, so my brain imprints on the patterns of normal behavior and i
can more rapidly spot something out of the ordinary. i try to teach this
principle to all my students: know what your system looks like normally, so
you can spot something out of the ordinary.
--
[email protected] mailing list
