Monitor Network Traffic with Tcpick

From BubbaWiki
Revision as of 11:50, 25 December 2010 by Asad (talk | contribs) (Created page with 'Tcpick is a very nice toool to monior network traffic on LAN.<br> It shows all packets in realtime colorized format. It is easier for the eyes compared to tcpdump.<br> Install ...')
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Tcpick is a very nice toool to monior network traffic on LAN.

It shows all packets in realtime colorized format. It is easier for the eyes compared to tcpdump.

Install tcpick:

apt-get install tcpick

Look for port 80 traffic:

tcpick -i br0 -C -yP -h "port 80"

Look for port 25 SMTP traffic:

tcpick -i br0 -C -yP -h "port 25"

Look for MSN Traffic:

tcpick -i br0 -C -yP -h "port 1863"

Filter one specific host to look for and log the output in realtime:

tcpick -i br0 -C -yP -h "port 1863" "host 192.168.10.68" | tee /tmp/messenlog_host_192.168.10.68.txt

Filter one specific host to look for and log the output in background (beware logs can take large space)

tcpick -i br0 -C -yP -h "port 1863" "host 192.168.10.68" | tee /tmp/messenlog_host_192.168.10.68.txt nohup &

To stop 

killall tcpick
Retrieved from "https://wiki.excito.com/index.php?title=Monitor_Network_Traffic_with_Tcpick&oldid=767"