[CentOS] log outbound port 80 connections
Tony Schreiner
schreian at bc.edu
Tue Feb 5 17:19:05 UTC 2008
On Feb 5, 2008, at 12:15 PM, John R Pierce wrote:
> Tony Schreiner wrote:
>> Is there a way to log outbound connections to a specific port (80)?
>> CentOS 4.6.
>
>
> assuming you want to log user web browsing traffic, configuring a
> Squid transparent proxy at your network border would be the best
> way. its logfiles are quite similar to those of a webserver, so
> you can use a wide range of log analysis tools.
>
To get more specific about what's going on. My network services have
informed me that the machine is probing other systems at a high rate.
An infection of some sort. And I'm trying to track down what's going on.
Tony
More information about the CentOS
mailing list