<ot> Another gmail question
David A. Bandel
david.bandel at gmail.com
Sun Aug 10 11:15:55 PDT 2008
On Sun, Aug 10, 2008 at 11:19 AM, Collins Richey <crichey at gmail.com> wrote:
[snip]
>
> How about some tips on use of tcptrack?. I find the man entry rather confusing.
tcptrack uses a expressions similar to tcpdump.
tcptrack -i <interface>
above is simplest, and hitting the s key will give you sorted by
packets, sorted by bytes, unsorted.
tcptrack -i eth0 host 192.168.1.20 and port 53
this will show just port 53 (dns) traffic w/ source or destination
192.168.1.20. You can also use 'net 192.168.1.0/24', and other
tcpdump expressions.
If you know tcpdump, tcptrack is similar. No arp/udp, but tcp
connection tracking and packets/bytes moving each second. I believe p
will pause the output.
ciao,
David A. Bandel
--
Focus on the dream, not the competition.
- Nemesis Air Racing Team motto
More information about the Linux-users
mailing list