From owner-freebsd-net@FreeBSD.ORG  Thu Sep 18 16:19:06 2003
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 9695616A4B3; Thu, 18 Sep 2003 16:19:06 -0700 (PDT)
Received: from genius.tao.org.uk (genius.tao.org.uk [212.135.162.51])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 501B343FAF; Thu, 18 Sep 2003 16:19:05 -0700 (PDT)
	(envelope-from joe@genius.tao.org.uk)
Received: by genius.tao.org.uk (Postfix, from userid 100)
	id 7F7864248; Fri, 19 Sep 2003 00:19:03 +0100 (BST)
Date: Fri, 19 Sep 2003 00:19:03 +0100
From: Josef Karthauser <joe@FreeBSD.org>
To: Robert Watson <rwatson@FreeBSD.org>
Message-ID: <20030918231903.GC41432@genius.tao.org.uk>
References: <20030918123203.GC13474@genius.tao.org.uk>
	<Pine.NEB.3.96L.1030918141239.1604C-100000@fledge.watson.org>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="s9fJI615cBHmzTOP"
Content-Disposition: inline
In-Reply-To: <Pine.NEB.3.96L.1030918141239.1604C-100000@fledge.watson.org>
User-Agent: Mutt/1.5.4i
cc: freebsd-net@FreeBSD.org
Subject: Re: Traffic analysis ports?
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Sep 2003 23:19:06 -0000


--s9fJI615cBHmzTOP
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, Sep 18, 2003 at 02:14:23PM -0400, Robert Watson wrote:
>=20
> On Thu, 18 Sep 2003, Josef Karthauser wrote:
>=20
> > I'm looking for some software to basically analyse the traffic I've got
> > going over a particular pipe so that I can work out whether or what to
> > traffic shape.  Can anyone recommend anything?=20
>=20
> I tend to cut my own BPF-based tools as needed to measure particular types
> of traffic, but that's not a very scalable approach.  There are commercial
> products, such as NAI's Sniffer tool (I think it can read playback from
> pcap output), which claim to be able to help with that sort of analysis,
> but I've never really used them.  For a "first cut" visualization of
> currently active network connections, tools such as ntop, trafshow,
> tcpstat, etc, can actually provide surprising amounts of insight.
>=20

Ahha, ntop.  That looks like just the kind of thing I was looking for.
Thanks :).

Joe
--=20
Josef Karthauser (joe@tao.org.uk)	       http://www.josef-k.net/
FreeBSD (cvs meister, admin and hacker)     http://www.uk.FreeBSD.org/
Physics Particle Theory (student)   http://www.pact.cpes.sussex.ac.uk/
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D An eclectic mix of fact an=
d theory. =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D

--s9fJI615cBHmzTOP
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (FreeBSD)

iEYEARECAAYFAj9qPWYACgkQXVIcjOaxUBYOoQCg1ie8KUUEvHNfKIbsBxs5Gm5u
hrQAoKfEYW8DD8jwOm6FrPBFEF5XLZhH
=9C5M
-----END PGP SIGNATURE-----

--s9fJI615cBHmzTOP--