network monitoring tools

21 Mar 2008

A list of useful tools for network monitoring on Linux:

  • iptraf – console tool with updating display
  • tcpdump
  • trafshow
  • ngrep – good for getting user agent strings in HTTP headers
  • ntop – though has been reported as unstable over longer periods
  • ethereal for protocal analysis
  • ettercap for arp cache spoofing – force traffic to come via your machine for analysis

Thanks to Andy and AndrewMc for these pointers.

(21-Mar-2008) Here are some more tools I’ve come across since then, some for network troubleshooting, some for general troubleshooting:

  • mrt – an ncurses program that combines the functionality of the ‘traceroute’ and ‘ping’ programs in a single network diagnostic tool
  • sysstat package – contains sar, iostat, mpstat, sadf and sa. The sar command collects and reports system activity information. The iostat command reports CPU utilization and I/O statistics for disks. The mpstat command reports global and per-processor statistics. The sadf command is used to display data collected by sar in various formats
  • lsof – list open files/sockets/etc for a process
  • inotify-tools – can be used to programatically monitor and act upon filesystem events
comments powered by Disqus

  « Previous: Next: »