Berikut contoh monitor traffic jaringan di server Ubuntu, dengan asumsi client terhubung ke server lewat "eth1"
Pertama-tama install terlebih dahulu "tcpick" di server :
#apt-get install tcpick
Memonitor traffic port 80 (HTTP):
#tcpick -i eth1 -C -yP -h "port 80"
Memonitor traffic port 25 (SMTP):
#tcpick -i eth1 -C -yP -h "port 25"
Memonitor traffic Yahoo Messenger:
#tcpick -i eth1 "port mmcc" -S -yP >> /tmp/ym.txt &
Memonitor traffic MSN:
#tcpick -i eth1 -C -yP -h "port 1863"
"tcpick" juga bisa dipakai untuk memonitor komputer tertentu saja didalam jaringan secara realtime dengan command :
#tcpick -i eth1 -C -yP -h "port 1863" "host 192.168.10.68" | tee /tmp/messenlog_host_192.168.10.68.txt
Untuk memfilter secara background dengan perintah:
#tcpick -i br0 -C -yP -h "port 1863" "host 192.168.10.68" | tee /tmp/messenlog_host_192.168.10.68.txt nohup &
Untuk menghentikan "tcpick":
#killall tcpick
No comments:
Post a Comment