02-28-2006
How to check the outbound packets in Linux
I have a linux redhat box , our security department in my company informed me that my server's IP sends So many traffic in my network ,
This box I am using it as FTP server to store the other servers logs .
My question briefly is how to check my outbound packets which are going from my PC to the network , and if there is any way to find out which service or application issuing tahts traffic ????
Thanks a lot and sorry for my English
10 More Discussions You Might Find Interesting
1. Linux
Hi all,
A security scanner has been done on a linux server and have found that
The remote host does not discard RCP SYN packets which have the FIN flag set.
It tells that I need to request a patch which I haven't found yet.
I have Red Hat Linux release 7.0 (Guinness)
Kernel 2.2.16-22... (2 Replies)
Discussion started by: bert.n
2 Replies
2. Linux
I have a server with multiple Internet IP Addresses:
x.x.x.1
x.x.x.2
x.x.x.3
x.x.x.4
.
.
.
When I use links to goto a website it uses the lowest x.x.x.1
Is there a way when I invoke links, or ftp or what ever, to use x.x.x.2 or x.x.x.99 when i start the application? (2 Replies)
Discussion started by: Ikon
2 Replies
3. Shell Programming and Scripting
Hi,
I'm making a script to compile some packets and I need for each one to check if the compilation is good...
I need to check if "./configure" and "make" runs correctly.
Are any scripting commands to make this?
For example, the solution can be a command that get the program's exit code... (1 Reply)
Discussion started by: paolom
1 Replies
4. UNIX for Dummies Questions & Answers
Hi all,
I am new to Linux kernel.
we have a c file that counts the no. of sends and received packets in each interface, and indicate the user about the error/drop ration of incoming and outgoing packets.
in our Linux box , the incoming packets are dropped at random interval.
we have our... (1 Reply)
Discussion started by: kannandv
1 Replies
5. UNIX for Dummies Questions & Answers
Hi,
---------- Post updated at 04:12 AM ---------- Previous update was at 04:09 AM ----------
This is the scripts..
Date=`date +"%m/%d/%y %H:%M:%S "`
echo "Run on $Date"
echo "Run on $Date" >&2
# Setting Variables
PassDir=$PS_HOME/autosys/pass # Location of the... (0 Replies)
Discussion started by: sonja
0 Replies
6. Linux
Hi Everybody,
I would like to know the entire network packets exchange, sequence between a linux dhcp client workstation & dhcp server as client comes up starting from OS booting stage as network service starts to the time client gets dhcp IP address. This would be in a typical LAN ... (2 Replies)
Discussion started by: sudhirav
2 Replies
7. IP Networking
hello,
can anyone suggest how to delay the incoming packets ??
or how the packets are prossed inside the kernal and a way to make the packets wait a while??
it wud be vry helpful
regards
sameer (7 Replies)
Discussion started by: sameer kulkarni
7 Replies
8. IP Networking
Hello,
Our software is using a TCP socket (AF_INET, SOCK_STREAM) to communicate with an Ethernet device. When we send a message, the message object writes itself in full onto the socket's stream buffer before the software invokes send() from socket.h.
I'm still researching, but have 2... (1 Reply)
Discussion started by: bix_20002000
1 Replies
9. Debian
I spent a lot of time trying to implement outbound traffic filtering with: cgroups + tc + iptables on Debian Jessie. Unfortunately there is still something wrong.
The biggest issue is:
- cgroups install + config
- net_cls subsystem implementation
- packets marking with net_cls
- appropriate... (0 Replies)
Discussion started by: Novi
0 Replies
10. Shell Programming and Scripting
I used netstat -tp <pid> to list all Foreign Addresses i.e OutBound sockets on Linux.
Likewise, i wish to list all Foreign Addresses on Sparc Solaris.
I get illegal option -- t when i try this command on Solaris.
The second query i have is that in the output of netstat command some... (1 Reply)
Discussion started by: mohtashims
1 Replies
LEARN ABOUT DEBIAN
multinet
MULTINET(8) System Manager's Manual MULTINET(8)
NAME
multinet - Connect to a Multinet* DECnet over IP server
SYNOPSIS
multinet [options] <local-decnet-addr> <remote-host>
DESCRIPTION
This utility creates a tapX device and copies all the DECnet packets from that over IP to a remote Multinet* server. It provides a way to
connect a Linux box to a remote VMS machine over an IP-only network. Using Linux routing it should be possible to connect DECnet networks
over the internet using this technique.
local-decnet-addr DECnet node address of the tapX interface. This need not be the same as the address used on other interfaces but it might
be less confusing if it is.
remote-host IP address or host name of the remote Multinet server. If you send a HUP signal to the process it will lookup this name again,
so you don't need to restart the server if the remote node changes its IP address.
*Multinet is a product, and probably a trademark, of Process Software.
http://www.process.com and is available free for hobbyist use.
The protocol used here was reverse engineered by Mark Berryman and Christine Caulfield.
OPTIONS
-v Be verbose and dump packet contents to stderr
-1 Advertise as a level 1 router
-2 Advertise as a level 2 router (default)
-D Make the tapX device into the default DECnet device. This will force all traffic to non-local nodes down the Multinet link. IMPOR-
TANT: Due to a kernel bug you should not use this option unless you are using a Linux kernel version 2.6.17 or later.
-p priority
Router priority. Default is 64
-P port
Port to talk to Multinet on (default is 700). Ony change this if you know the Multinet server is listening on a different port
-m MTU Maximum size of packets. (default 576)
-t secs
Timeout for IP connections. If no traffic is seen on the IP connection after this time then the daemon will attempt to restart it.
-H hello timer
How often HELLO messages are sent (default 60) in seconds.
EXAMPLES
multinet -1 -D 3.2 zarqon.tykepenguin.com
SEE ALSO
dnroute(8), ip(8)
DECnet utilities March 30 2006 MULTINET(8)