[NCLUG] tcptrack -- useful tool of the day

Bob Proulx bob at proulx.com
Wed Nov 15 22:56:09 MST 2006


I found a useful tool today.  It is called tcptrack.  Not having run
into this particular tool before I thought I would share and pass it
along.

  sudo apt-get install tcptrack
  sudo tcptrack -i eth0

This is a really cool utility!  It gives a top-like listing of the
currently active connections with bandwidth utilization and other
useful stuff.  I found it very informative.  This is definitely going
to be a popular tool in my toolbox.

Check it out!

Bob

 15.235.211.254:18535  216.17.153.58:22      ESTABLISHED  0s     240 KB/s
 24.8.177.121:36465    216.17.153.58:80      RESET        2s     0 B/s
 216.17.153.62:32770   192.25.206.18:22      ESTABLISHED  14s    0 B/s
 216.17.153.62:37993   208.245.212.98:5223   ESTABLISHED  16s    0 B/s

  man tcptrack

       tcptrack displays the status of TCP connections that it sees on
       a given network interface. tcptrack monitors their state and
       displays information such as state, source/destination
       addresses and bandwidth usage in a sorted, updated list very
       much like the top(1) command.

       The filter expression is a standard pcap filter expression
       (identical to the expressions used by tcpdump(8)) which can be
       used to filter down the characteristics of TCP connections that
       tcptrack will see. See tcpdump(8) for more information about
       the syntax of this expression.



More information about the NCLUG mailing list