ZDNet: Traffic analysis almost for free, part 2Feb 08, 2001, 21:49 (4 Talkback[s])
(Other stories by Bob Currier)
"In my last column I showed you how to configure a Linux-based monitoring system with dual network interface cards. In this column I'll show you how to install and configure IPtraf, a traffic analysis utility, and how to use GNUplot, an open source plotting package, to graph the data you've gathered."
"IPtraf is a console-based network monitoring utility for Linux (the latest version, 2.3.1, is available for download). Written by Gerard Paul Riker, IPtraf tops my list of easy-to use-network analysis tools. IPtraf is distributed in a compressed tar format, and the full source code is included. ...a ready-to-run executable file is included in the distribution..."
"Before you begin capturing traffic, you need to configure IPtraf. up Launch the application and select the "configuration" menu item. We're interested in three settings: TCP/UDP service names, logging, and logging interval. Enable service names and logging, and set the logging interval to 5 minutes."