Hi all,
Anyone have a sniffer they can recommend for Linux? Redhat preferably. Appreciate the feedback.
Luck
Printable View
Hi all,
Anyone have a sniffer they can recommend for Linux? Redhat preferably. Appreciate the feedback.
Luck
And you want a sniffer for what legitimate reason?
I'd offer my dog, but she runs on Windows-K9... sorry.
--PhirePhreak
tcpdump - should be on your redhat CD's (I believe it's on CD 1).
Yeah, this is for real business work. My company is trying to get to the bottom of a slow location. I think it's abuse by one of the workers. ( In Brazil )
We're looking into big brother as well.
tcpdump & Ethereal will help you out.
;)
J.
I'd go for Ethereal it's excellent, you can find the packets you're really interested in, and it disassembles them for you, separating the headers at various protocol levels, which makes it much faster to work out what's going wrong (Assuming that's what you want it for)
Thanks for the information. I was looking into etherpeek from wildpackets. I don't know how much it costs though.
ethereal would be my best recomendation
You can use snort in sniffer mode and pipe it through TCPview for detailed traffic logs on any port. This has worked well for monitoring an IRC server.