by lonelyplanet9 » Tue, 21 Jan 2003 00:05:58
I would like to ask if tcpdump being used to monitor traffic to & from
an LAN interface, does tcpdump need to run at a host in the same
subnet as the interface being monitored ? Any tcpdump software
available for monitoring traffic to & from LAN interface at different
subnet ?
by Tauno Voipi » Tue, 21 Jan 2003 02:54:22
tcpdump can be run in promiscuous mode (you have to be root), so it sees allQuote:> Hi,
> I would like to ask if tcpdump being used to monitor traffic to & from
> an LAN interface, does tcpdump need to run at a host in the same
> subnet as the interface being monitored ? Any tcpdump software
> available for monitoring traffic to & from LAN interface at different
> subnet ?
The network structure determines whether you'll see traffic of other nodes:
if the network is built on switches the traffic is not visible, if it relies
on hubs, the traffic in the segment is seen at the receiver. There are also
switches where one port can be configured to listen to all traffic.
HTH
Tauno Voipio
by James Knot » Tue, 21 Jan 2003 07:50:17
--
Fundamentalism is fundamentally wrong.
james.knott.
1. What is a good app to monitor network interface traffic?
I am looking for a good program that shows thouroughput, and total bytes
transferred for a network interface.
--
Brian Wagener
ShopTalk Forums http://shoptalk.tunacan.net
The greatest VW forums on the web.
2. Apache 1.2.1 compiling problems
3. Passive http traffic logger using TCPDUMP
5. Can tcpdump monitor the ppp interface?
7. IP traffic monitoring for Alias interfaces
9. script to monitor traffic on a interface
10. setting an interface for up traffic and a second for down traffic
11. using tcpdump to monitor local packets
12. Using tcpdump to monitor OSPF routing messages
13. Using tcpdump to monitor loopback ports