On Mon, August 1, 2005 8:05 am, Kennedy Clark said: > Does anyone know of a way to track TCP/IP traffic by TCP/UDP port > and/or by process/daemon with CentOS? I know a variety of ways to > track it in total (e.g., ifInOctets & ifOutOctets with SNMP), but I'm > not sure how to be approach seeing traffic by application, port, or > process. > > One option would be to write something that would sift through > different stuff for each daemon (for example, with apache, you could > add up all the bytes sent by summing up the values in 'access_log'), > but I was hoping for a more centralized method that would work the > same for all daemons and/or ports. iptraf will show you real time information by port ... and netstat -aptn will show you what programs/services are using which ports > > One approach I have though about is using iptables... "iptables -L -n > -v" gives detail on packets and byte counts by ACL entry. Does anyone > have any experience with any tools that grab this info and > graph/report on it? > > My searches have yielded tons of hits, but none of it seems relevant. > Are there any tools that measure this? > > Thanks, > KC -- Johnny Hughes <http://www.HughesJR.com/>