Fedora Linux Support Community & Resources Center

Home Forums Posting Rules Linux Help Fedora Set-Up Guides Ask Fedora Fedora Project
Go Back   FedoraForum.org > Fedora 17/18 > Security and Privacy
Reload this Page monitoring my network
FedoraForum Search
Forgot Password? Join Us!
Register All Albums FAQ Search Today's Posts Mark Forums Read

Security and Privacy Sadly, malware, spyware, hackers and privacy threats abound in today's world. Let's be paranoid and secure our penguins, and slam the doors on privacy exploits.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 27th February 2007, 02:06 PM
chicom9's Avatar
chicom9 Offline
Registered User
  
Join Date: Apr 2006
Posts: 107
monitoring my network
Hi all,

I have a box thats running FC6 64 bit, w/ two network cards. So far, i dont have use for the second nic so its disabled. However, i am running into a problem. The NIC thats currently enable and working is generating huge amounts of traffict. (At least thats what i think) I can tell this because I can see the LED in my network switch going crazy. Also, my whole network will go down, and i cannot connect to the internet nor i cannot connect to my network shares. Now, my network is made of a windows 2003 box running file sharing, and just a test ad, and dns. Nothing major since its a home server just for testing purposes.
My Fedora Box is just used as my daily desktop. I had to disable NIC1 and enable NIC2 to get back my network. I wonder if there is something wrong w/ my NIC1 or is there some kind of malicious activity going on in my box???

PLEAse Help???
Reply With Quote
  #2  
Old 27th February 2007, 02:27 PM
InKo's Avatar
InKo Offline
Registered User
  
Join Date: Dec 2005
Location: EU
Age: 36
Posts: 637
hi,

to check the network activity you can use ethereal
try also
Code:
lsof
to see the list of open files/ sockets etc on your system
and you can also check the running processes with top or ps!..

__________________
The software required «Windows 98 or better», so I installed Linux.
Reply With Quote
  #3  
Old 27th February 2007, 02:36 PM
chicom9's Avatar
chicom9 Offline
Registered User
  
Join Date: Apr 2006
Posts: 107
Thanks I will try that
Reply With Quote
  #4  
Old 27th February 2007, 03:26 PM
pigpen's Avatar
pigpen Offline
Registered User
  
Join Date: Nov 2003
Location: Regensburg, Germany
Age: 42
Posts: 447
etherreal is now known as "wireshark". also, try "iptraf".
__________________
/(bb|[^b]{2})/ -- that is the question!
Reply With Quote
  #5  
Old 27th February 2007, 10:13 PM
Foster_ua's Avatar
Foster_ua Offline
Registered User
  
Join Date: Feb 2007
Location: web
Posts: 36
tcpdump -i nic1 will help you
Reply With Quote
  #6  
Old 1st March 2007, 12:28 PM
ibbo's Avatar
ibbo Offline
Registered User
  
Join Date: Jun 2005
Location: Leeds
Posts: 1,264
I find net-snmp to be the one to use. Of course wireshark and lsof are good tools too.

But net-snmp and say scotty (tkined) have to be the best management/ monitoring tools around for you as they can monitor an entire network and not just the node you are on.

Ibbo
__________________
A Hangover Lasts A Day, But Our Drunken Memories Last A Lifetime
--
Linux user #349545
(GNU/Linux)iD8DBQBAzWjX+MZAIjBWXGURAmflAKCntuBbuKCWenpm XoA7LNydllVQOwCfdjyzXscddzQvlhBedAcD7qfKmHo==zx0H
Reply With Quote
  #7  
Old 1st March 2007, 12:38 PM
johno12345's Avatar
johno12345 Offline
Registered User
  
Join Date: Jun 2004
Location: Lancashire, UK
Posts: 332
cacti is a pretty decent tool for monitoring and reporting snmp information, which not only covers network but cpu, disk and memory utilization.
__________________
Running Fedora since FC1, running Redhat since 5(not EL).
Registered Linux user number 485853
Rossendale and East Lancashire (UK) LUG http://www.rosslug.org.uk
Reply With Quote
  #8  
Old 1st March 2007, 01:57 PM
chicom9's Avatar
chicom9 Offline
Registered User
  
Join Date: Apr 2006
Posts: 107
so far i have tried tcpdump -i nic1 and wireshark, but i think tcpdump ofers more details. I donot see anything thats malicious.. i going to run it on nic2 will seee the results...
Reply With Quote
  #9  
Old 1st March 2007, 08:31 PM
Foster_ua's Avatar
Foster_ua Offline
Registered User
  
Join Date: Feb 2007
Location: web
Posts: 36
cacti+snmp isn't diagnostic tool
graphics is really pretty thing but only for continious monitoring
for quick results and more information on net packets - tcpdump
__________________
user #443136
machine #349956
Reply With Quote
Reply

Tags
monitoring, network

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


Current GMT-time: 08:21 (Thursday, 23-05-2013)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.
Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

 FedoraForum is Powered by RedHat