Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Logging network connections
Special Forums IP Networking Logging network connections Post 302303474 by abstrcrndm on Thursday 2nd of April 2009 05:07:07 PM
Old 04-02-2009
Question Logging network connections
Hello,

I have a centralized syslog server, and am wondering if there is a way to log all network connections to it (Primarily incoming, such as FTP, httpd, SSH, etc). Essentially what I would like is to get the information seen in netstat or lsof logged line by line, realtime. Is there a program to do this? I would think this is relatively common, but I have had no luck searching for it. Thanks for your time!
 

9 More Discussions You Might Find Interesting

1. Linux

active network connections

how can i see active network connections (1 Reply)
Discussion started by: youmna
1 Replies

2. Solaris

Logging Connections in Solaris

Hi All, Is there a built in function/tool in Solaris that enables creation of a history file on any connection (via telnet, ssh, rsh or nfs) to Solaris machine? I would like to create a script that records IP Address, date and timestamp, and command excuted for any connection to a Solaris... (2 Replies)
Discussion started by: racbern
2 Replies

3. Solaris

logging incoming connections on solaris 10

i've been able to log incoming telnet and ssh connections on solaris 9 using the following lines in /etc/syslog.conf # Telnet connections are logged to auth.notice auth.notice /var/adm/authlog # An entry in /etc/profile logs all telnet connections... (2 Replies)
Discussion started by: soliberus
2 Replies

4. IP Networking

preferred network connections

I rotate between a static lan, dhcp lan, and various wireless networks daily. Is there a way to set preferred network connections? I use some static ip's daily, some static ip's like once a month, and almost never use the dhcp lan. The same I do with my various wireless networks. Some I use daily... (0 Replies)
Discussion started by: cokedude
0 Replies

5. IP Networking

2 WAN connections on 1 switch/network

I want to know potential problems with the following scenario OR if it is an ok way to have my network setup: I have 2 WAN connections to the internet. I have each WAN connection plugged into its own router. Router DD-WRT is gateway for servers (192.0.10.50). Router Tomato is gateway for pc's... (1 Reply)
Discussion started by: herot
1 Replies

6. UNIX for Advanced & Expert Users

Not logging ftp connections in /var/adm/wtmpx file (in last command output)

Hi all, I have F5 load balancer on my system and checking service status by opening an ftp session in every 30 seconds. These ftp sessions are being logged in /var/adm/wtmpx and filling up the file. when i run the last command most of the output is this ftp session. I was wondering if there is a... (1 Reply)
Discussion started by: cepxat
1 Replies

7. Shell Programming and Scripting

Could you help me writing a script showing which network connections are currently active?

Could you help me writing a script showing which network connections are currently active? Means output should be something like: "eth0, wlan1, wlan3" Problem: The output is supposed to happen on a 16x2 LCD Display. Currently I am doing a "Ifconfig" as output, but its too fast for the... (2 Replies)
Discussion started by: lordofazeroth
2 Replies

8. Solaris

Configuring central logging server for network devices

Hi I am very well aware of configuring central logging (syslog)server on solaris to capture logs of other solaris servers. But don't know how to capture the logs of network devices like Juniper , cisco etc on solaris server. Is this possible through syslog server of solaris. Is there any way we... (1 Reply)
Discussion started by: amity
1 Replies

9. UNIX for Advanced & Expert Users

Network Connections

I have a static IP 47.21.154.146 and two computers which I wish to talk to each other. The two IPs are 198.168.1.5 and 198.168.1.6. How do I do it. For example ls from one computer to the other. TIA (8 Replies)
Discussion started by: Meow613
8 Replies

LEARN ABOUT DEBIAN

redir

REDIR(1)						      General Commands Manual							  REDIR(1)

NAME

       redir - redirect tcp connections

SYNOPSIS

       redir  [--laddr=incoming.ip.address]  [--caddr=host] [--debug] [--syslog] [--name=str] [--timeout=n] [--bind_addr=my.other.ip.address] [--ftp=type]
       [--transproxy] [--connect=host:port] --lport=port --cport=port [--bufsize=n] [--max_bandwidth=n] [--random_wait=n] [--wait_in_out=n]
       redir --inetd [--caddr=host] [--debug] [--syslog] [--name=str] [--timeout=n] [--ftp=type] [--transproxy] [--connect=host:port] --cport=port
       [--bufsize=n] [--max_bandwidth=n] [--random_wait=n] [--wait_in_out=n]

DESCRIPTION

       Redir redirects tcp connections coming in to a local port to a specified address/port combination.

       It may be run either from inetd or as a standalone daemon.  Depending on how redir was compiled, not all options may be available.

OPTIONS

       --lport
	      Specifies port to listen for connections on (when not running from inetd)

       --laddr
	      IP address to bind to when listening for connections (when not running from inetd)

       --cport
	      Specifies port to connect to.

       --caddr
	      Specifies remote host to connect to. (localhost if omitted)

       --inetd
	      Run as a process started from inetd, with the connection passed as stdin and stdout on startup.

       --debug
	      Write debug output to stderr or syslog.

       --name Specify program name to be used for TCP wrapper checks and syslog logging.

       --timeout
	      Timeout and close the connection after n seconds of inactivity.

       --syslog
	      Log information to syslog.

       --bind_addr
	      Forces redir to pick a specific address/interface to bind to when it listens for incoming connections.

       --ftp  When  using  redir  for  an FTP server, this will cause redir to also redirect ftp connections.  Type should be specified as
	      either "port", "pasv", or "both", to specify what type of FTP connection to handle.  Note that --transproxy often makes  one
	      or the other (generally port) undesirable.

       --transproxy
	      On  a linux system with transparent proxying enabled, causes redir to make connections appear as if they had come from their
	      true origin.  (see /usr/share/doc/redir/transproxy.txt)

       --connect
	      Redirects connections through an HTTP proxy which supports the CONNECT command.  Specify the address and port of	the  proxy
	      using --caddr and --cport.  --connect requires the hostname and port which the HTTP proxy will be asked to connect to.

       --bufsize n
	      Set  the	bufsize (defaut 4096) in bytes. Can be used combined with --max_bandwidth or --random_wait to simulate a slow con-
	      nection.

       --max_bandwidth n
	      Reduce the bandwidth to be no more than n bits/sec.  The algorithme is basic, the goal is to simulate a slow connection,	so
	      there is no pic acceptance.

       --random_wait n
	      Wait  between  0	and  2	x  n  milliseconds before each "packet". A "packet" is a bloc of data read in one time by redir. A
	      "packet" size is always less than the bufsize (see also --bufsize).

       --wait_in_out n
	      Apply --max_bandwidth and --random_wait for input if n=1, output if n=2 and both if n=3.

SEE ALSO

       inetd(1)

								       local								  REDIR(1)
All times are GMT -4. The time now is 05:33 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy