Date: Tue, 16 Apr 1996 16:20:00 +1000 (EST) From: Anthony Hill <ahill@interconnect.com.au> To: Mark Stout <mcs@vpm.com> Cc: questions@freebsd.org Subject: Re: Monitoring traffic between two sites, How?? Message-ID: <Pine.BSI.3.91.960416161828.28626C-100000@tulpi.interconnect.com.au> In-Reply-To: <199604160305.UAA02499@vpm.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 15 Apr 1996, Mark Stout wrote: > "Anthony Hill was seen writing" > > On Mon, 15 Apr 1996, Christian wrote: > > > > > Hi, > > > > > > I was wondering if there is anyway to use FreeBSD to monitor > > > traffic between two sites. I wan to be able to see how many users > > > from certain ip addresses on our network are connected to another ip > > > address. If possible I would also like to know, the duration of each > > > session, and what port the users are connected to on the other end. > > > Is this possible using FreeBSD and/or some freely available tools? > > > > Well you could get the raw data with tcpdump (which is part of the > > distribution), although it would be a bit cryptic. Perhaps someone knows > > of something that would process the output of tcpdump into something a > > bit more readable. > > I tried using tcpdump, but can't configure the device /dev/bpf0. What > do I need to do to configure this device? You have to add the relevent lines to your kernel config file. Im not at my box at the moment, but I worked it out from LINT.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSI.3.91.960416161828.28626C-100000>