Unknown network activity every 5 minutes
Andy Green
andy at warmcat.com
Wed Oct 12 13:24:26 UTC 2005
McGuffey, David wrote:
> Where is network activity logged? If it isn't currently being logged, what
> actions do I take to log this kind of activity? What process might be doing
> this?
Grab the traffic with tcpdump. tcpdump on its own will capture the
traffic type, where it came from and where it was trying to get to...
tcpdump -s0 -X
will show you the contents of the packets too.
Also
netstat -putn
will show what connections your box has going at the time you run it,
and the name of process owning the connection.
-Andy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 4492 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20051012/6d6974e7/attachment-0001.bin>
More information about the fedora-list
mailing list