Date: Thu, 13 Feb 1997 14:34:35 -0700 (MST) From: Charles Mott <cmott@srv.net> To: freebsd-chat@freebsd.org Subject: Security Monitoring Message-ID: <Pine.BSF.3.91.970213142645.6299B-100000@darkstar>
next in thread | raw e-mail | index | archive | help
Are there any programs that use the bpf device to log addresses and make a summary? I guess that I would be interested in two levels of summary: (1) all tcp/udp connections, which would be very long, and (2) summary of outside addresses for incoming and outgoing connections on a given day. Summary (2) is useful to someone like myself who frequents a small area of the internet and can quickly spot unusual addresses. I feel sure that summary (1) exists in some form (maybe even as an appropriate option to tcpdump). However I don't know if there is a convenient summary utility which goes through the long listing, does the name lookups, and summarizes activity for each address. Charles Mott
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.91.970213142645.6299B-100000>