[NCLUG] tcptrack -- useful tool of the day
Bob Proulx
bob at proulx.com
Wed Nov 15 22:56:09 MST 2006
I found a useful tool today. It is called tcptrack. Not having run
into this particular tool before I thought I would share and pass it
along.
sudo apt-get install tcptrack
sudo tcptrack -i eth0
This is a really cool utility! It gives a top-like listing of the
currently active connections with bandwidth utilization and other
useful stuff. I found it very informative. This is definitely going
to be a popular tool in my toolbox.
Check it out!
Bob
15.235.211.254:18535 216.17.153.58:22 ESTABLISHED 0s 240 KB/s
24.8.177.121:36465 216.17.153.58:80 RESET 2s 0 B/s
216.17.153.62:32770 192.25.206.18:22 ESTABLISHED 14s 0 B/s
216.17.153.62:37993 208.245.212.98:5223 ESTABLISHED 16s 0 B/s
man tcptrack
tcptrack displays the status of TCP connections that it sees on
a given network interface. tcptrack monitors their state and
displays information such as state, source/destination
addresses and bandwidth usage in a sorted, updated list very
much like the top(1) command.
The filter expression is a standard pcap filter expression
(identical to the expressions used by tcpdump(8)) which can be
used to filter down the characteristics of TCP connections that
tcptrack will see. See tcpdump(8) for more information about
the syntax of this expression.
More information about the NCLUG
mailing list