[TOOL] IPTraf, IP Network Monitoring Software

From: support@securiteam.com
Date: 09/02/01


From: support@securiteam.com
To: list@securiteam.com
Subject: [TOOL] IPTraf, IP Network Monitoring Software
Message-Id: <20010902122829.683B6138BF@mail.der-keiler.de>
Date: Sun,  2 Sep 2001 14:28:29 +0200 (CEST)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -

  IPTraf, IP Network Monitoring Software
------------------------------------------------------------------------

DETAILS

IPTraf is a console-based network statistics utility for Linux. It gathers
a variety of figures such as TCP connection packet and byte counts,
interface statistics, activity indicators, TCP/UDP traffic breakdowns, and
LAN station packet and byte counts.

Features:
 * An IP traffic monitor that shows information on the IP traffic passing
over your network. Includes TCP flag information, packet and byte counts,
ICMP details, OSPF packet types.
 * General and detailed interface statistics showing IP, TCP, UDP, ICMP,
non-IP and other IP packet counts, IP checksum errors, interface activity,
packet size counts.
 * A TCP and UDP service monitor showing counts of incoming and outgoing
packets for common TCP and UDP application ports.
 * A LAN statistics module that discovers active hosts and shows
statistics showing the data activity on them.
 * TCP, UDP, and other protocol display filters, allowing you to view only
traffic you're interested in.
 * Logging.
 * Supports Ethernet, FDDI, ISDN, SLIP, PPP, and loopback interface types.

 * Utilizes the built-in raw socket interface of the Linux kernel,
allowing it to be used over a wide range of supported network cards.
 * Full-screen, menu-driven operation.

ADDITIONAL INFORMATION

The tool can be downloaded from:
 <http://cebu.mozcom.com/riker/iptraf/download.html>
http://cebu.mozcom.com/riker/iptraf/download.html

The information has been provided by <mailto:riker@seul.org> Gerard Paul.

========================================

This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.



Relevant Pages

  • alt.2600 FAQ Revision .014 (2/4)
    ... One type of firewall is the packet filtering firewall. ... Dropping packets instead of rejecting them greatly increases the time required to scan your network. ... Port scanning UDP ports is much slower than port scanning TCP ports. ... Chartreuse Use the electricity from your phone line Cheese Connect two phones to create a diverter Chrome Manipulate Traffic Signals by Remote Control ...
    (alt.2600)
  • Re: VLANs and routing
    ... machine1 shouldn't have assigned IP address, ... to transmit a packet, it needs to put a source IP address into the packet ... - which virtually always comes from the interface. ... destination network should be collected by using ARP. ...
    (freebsd-net)
  • RE: Intrusion Prevention requirements document
    ... The tools consider one interface as "client" and other ... Packet 1 is first sent out on client interface. ... > The product uses two network cards and so the library of over 700 ... > my previous company was Blade Software where I developed IDS Informer ...
    (Focus-IDS)
  • Re: UDP timers
    ... So you don't want TCP, but you want 80% of what TCP provides? ... What is the nature of the network? ... Are you using a financial cost per packet communications ... sure (at least in your desired generic solution) the packet was received. ...
    (comp.arch.embedded)
  • Re: Terrible NFS performance under 9.2-RELEASE?
    ... The largest size of a TCP datagram is ... So by the time NFS adds the overhead on and the total amount ... regardless of whether the packet ends up being segmented ... For your virtual network, yes. ...
    (freebsd-net)