What can I do so that I can monitor all the ports on my Fedora box that are being access/probed/used?
I would like to be able to say, hmmm, why is that ip accessing that port? Or why is that daemon/service communicating with some ip, and what is that ip?
I also don't want to run Ethereal all the time. Is that log at /var/log/messagse the best way to monitor things? There are too many messages in there, and too many odd IP stuff going on. And I hear that certain SYN commands aren't logged there.
Basically, I want to know what's going on. If tehre's a few fools snooping around my property I want to know about it so that possibly I can club them.