Two options: - If most of of the traffic is HTTP/HTTPS, configure a DHCP server to force a local proxy (block HTTP/HTTPS on the router to prevent the offenders from connecting without the proxy), then run bmon and/or iptop on the proxy to see what is going on.
- If the traffic is not proxy-routable, configure a Linux host as a local router and run bmon/iftop on it. -- Sasha Pachev Fast Running Blog. http://fastrunningblog.com Run. Blog. Improve. Repeat. /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
