I was wondering if anyone had any recommendations for a traffic analyzer that will read from a syslog file, and not just by binding to the network interface in promiscious mode. I was hoping to find a program that will show traffic usage by IP address, many of them just show the total traffic statistics.
On 11/2/05, Justin Zygmont jzygmont@solarflow.net wrote:
I was wondering if anyone had any recommendations for a traffic analyzer that will read from a syslog file, and not just by binding to the network interface in promiscious mode. I was hoping to find a program that will show traffic usage by IP address, many of them just show the total traffic statistics.
From syslog?
ntop will give information about top talkers, etc and will read pcap files...
-- Leonard Isham, CISSP Ostendo non ostento.
I would use iptables or ipchains to set some pass-through rules that count the traffic. At the end of the day, you can dump the output and flush the tables.
Patrick
On 11/2/05, Justin Zygmont jzygmont@solarflow.net wrote:
I was wondering if anyone had any recommendations for a traffic analyzer that will read from a syslog file, and not just by binding to the network interface in promiscious mode. I was hoping to find a program that will show traffic usage by IP address, many of them just show the total traffic statistics.
-- fedora-list mailing list fedora-list@redhat.com To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list