Date: Fri, 27 Oct 2006 18:00:33 +0200 From: bsd <bsd@todoo.biz> To: Michael P. Soulier <msoulier@digitaltorque.ca> Cc: Liste FreeBSD <freebsd-questions@freebsd.org> Subject: Re: traffic analysis tools Message-ID: <4301D1E8-B2A7-49E3-A580-FFFE4B3C512A@todoo.biz> In-Reply-To: <20061021141934.GP31580@tigger.digitaltorque.ca> References: <20061021141934.GP31580@tigger.digitaltorque.ca>
next in thread | previous in thread | raw e-mail | index | archive | help
Le 21 oct. 06 =E0 16:19, Michael P. Soulier a =E9crit : > Hey people, > > I'd like something to look at traffic use through my gateway, so I =20 > know how > much of my upload bandwidth and download bandwidth is in use at any =20= > time. This could be donne very easily withe cacti : --> Activate SNMP on your gateway --> Log into cacti --> Select Devices and create a new one corresponding to your gateway --> Select a Host Template of type ucd/net SNMP host --> Add graph template --> Add data query of type "SNMP - interface statistics" This should be very easy. For security purpose reduce the IP range of allowed hosts in the =20 snmpd.conf > Ideally it'll tell me from where, so I can look at internal =20 > abusers, or get an > idea of where hits are coming from. > If your PC's are connected to a switch, activate SNMP and monitor It =20 the same way. Otherwise you'll have to go into deeper configuration of cacti and =20 script the solution to monitor load per IP. Another solution would be to Monitor global bandwith and log into =20 your gateway once you encounter congestion and have a little command =20 like that showing whom the nasty guys are : # netstat -an | less If your gateway is not a FreeBSD - let us know because things could =20 be very different. > Off the top of my head, I can think of two tools. > > 1. ntop - great web interface, but I've found it unstable > 2. iptraf - good curses interface, but I'm looking for trend =20 > monitoring > 3. mrtg - as I'm running snmp, so I could just monitor it from a =20 > desktop > running mrtg... > > Any other suggestions? > > Thanks, > Mike ________________________________________________ =AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?= =BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7 =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF= =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF Gregober ---> PGP ID --> 0x1BA3C2FD bsd @at@ todoo.biz ________________________________________________ =AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?= =BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7 =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF= =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF P "Please consider your environmental responsibility before printing =20 this e-mail"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4301D1E8-B2A7-49E3-A580-FFFE4B3C512A>