Login or Register to Ask a Question and Join Our Community


UNIX and Linux RSS News

Keeping an eye on your network with PasTmon

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums News, Links, Events and Announcements UNIX and Linux RSS News Keeping an eye on your network with PasTmon
# 1  
Old 12-02-2008
Keeping an eye on your network with PasTmon
12-02-2008 02:00 AM
The PasTmon passive traffic monitor keeps an eye on your network, recording which clients are interacting with which services, when and how long things took. You can then use the application's PHP Web interface to investigate these figures to see if any host is connecting to Web services that it shouldn't, or is contacting services suspiciously more frequently than you would expect for normal operation, or when response times become excessively long.



Source...
Login or Register to Ask a Question

Previous Thread | Next Thread

2 More Discussions You Might Find Interesting

1. AIX

EYE function

Hello, could someone tell me if there's a function as on SOLARIS : EYE, to identify the function of server. Thank you, (4 Replies)
Discussion started by: rimob
4 Replies

2. UNIX for Advanced & Expert Users

Keeping an eye on all user activities

I am responsible for administering 6 Tru64UX servers. I need to keep an eye on all the commands executed by all the users. Is there a way where I can save the commands executed in a seperate folder and then keep checking the list every now and then. How can do it ? (5 Replies)
Discussion started by: shauche
5 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

guessnet-scan

GUESSNET-SCAN(8)					      System Manager's Manual						  GUESSNET-SCAN(8)

NAME

       guessnet-scan - guess network configuration data by looking at network traffic

SYNOPSIS

       guessnet-scan [options] [ethernet_interface]

DESCRIPTION

       Guessnet-scan tries to deduce network configuration data by watching network traffic at a given Ethernet interface.

       After  scanning	network  traffic  for some time, guessnet-scan prints a configuration string suitable for inclusion in /etc/network/inter-
       faces.

       Note that guessnet-scan uses heuristics and wild guesses and that the resulting data is not guaranteed to  be  accurate.   The  program	is
       intended to be used as a first try at getting network configuration data without bothering anyone.

OPTIONS

       Options follow the usual GNU conventions,

       --debug
	      Print debugging messages.

       --help Show a brief summary of commandline options.

       --init-time=int
	      Time in seconds to wait for the interface to initialize when it is not found already up at program startup.  Default: 3 seconds.

       -t, --timeout=int
	      Time in seconds to watch for network traffic.  Default: 5 seconds.

       -v, --verbose
	      Operate verbosely.

       --version
	      Show the version number of the program.

SCANNING REQUIREMENTS

       To  correctly  identify all data of the local network, guessnet-scan needs to see traffic related to a host in the local network and to the
       local gateway, if any.

       To be able to identify the network gateway, guessnet-scan also needs to see some traffic directed to the external network: you can help the
       detection  by  generating  some	outbound IP traffic during the scan, for example by browsing a web page (without proxy) or using telnet to
       open a connection to some remote host.

       Note that if you are connected to a switch, guessnet-scan won't probably be able to work, since the switch will isolate it from the network
       traffic that the other machines are generating.

SEE ALSO

       guessnet(8), interfaces(5).

AUTHOR

       Guessnet-scan was written by Enrico Zini <enrico@debian.org>.

								  10 October 2004						  GUESSNET-SCAN(8)