File: README

package info (click to toggle)
iptraf 2.1.1-4
  • links: PTS
  • area: main
  • in suites: potato
  • size: 1,112 kB
  • ctags: 950
  • sloc: ansic: 9,494; makefile: 111; sh: 50
file content (118 lines) | stat: -rw-r--r-- 4,151 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
 
***

IPTraf 2.1

See the IMPORTANT CHANGES section below.

***

DESCRIPTION

IPTraf is a console-based network monitoring program for Linux that
displays information about IP traffic.  It returns such information as:

	Current TCP connections
	UDP, ICMP, OSPF, and other types of IP packets
	Packet and byte counts on TCP connections
	IP, TCP, UDP, ICMP, non-IP, and other packet and byte counts
	TCP/UDP counts by ports
	Packet counts by packet sizes
	Packet and byte counts by IP address
	Interface activity
	Flag statuses on TCP packets
	LAN station statistics
	
This program can be used to determine the type of traffic on your network,
and what kind of service is the most heavily used on what machines, among
others.

IPTraf works on Ethernet, FDDI, ISDN, PLIP, loopback, and SLIP/PPP
interfaces.

Updates and announcements are at the IPTraf Web page at
http://cebu.mozcom.com/riker/iptraf/

IMPORTANT CHANGES

A. Changes to the -i and -l Command-line Parameters

The IP Traffic Monitor and the LAN Station Monitor now have interface
selection boxes.  A single interface or all interfaces may be monitored.
Accordingly, the -i and -l command-line options (that start these two
facilities from the command line) now take an interface name as an
argument.  For example, to start the IP Traffic Monitor on interface eth0:

	iptraf -i eth0

To monitor all interfaces, you can specify "all" instead:

	iptraf -i all

B. Background Operation
Another new feature is background operation.  This feature allows IPTraf
to run in the background mainly for logging purposes for processing later.
The background feature is invoked with the -B option on the command line,
used with one of the parameters to invoke a statistical facility.

For example, to start the IP Traffic Monitor (for all interfaces) in
background mode, enter the command

	iptraf -i all -B

A facility can also be told to run for a specific time.  For example

	iptraf -i all -t 5 -B

causes the IP Traffic Monitor to run in the background for 5 minutes.  See
the manual for full details.

C. TCP/UDP Filter Editing Facility
IPTraf now allows you to edit defined TCP and UDP filters.  See the manual
for details.

DISTRIBUTION NOTICE

This is the general release of IPTraf.  IPTraf has been incorporated into
the Debian GNU/Linux and S.u.S.E. distributions, as well as the Trinux
security toolkit distribution.

Linux distributions may have tailored the IPTraf package to suit their
purposes.  Direct questions, comments or inquiries about a
distribution-specific package to its maintainer.

NEW SYSTEM REQUIREMENTS

IPTraf 2 requires Linux 2.2.  It now uses the new PF_PACKET socket family
as its capture mechanism.  This feature is new to the 2.2 kernel.  IPTraf
1.4 will still work with kernel 2.2 with no problems, except for a warning
message in the syslog indicating the use of the obsolete (AF_INET,
SOCK_PACKET) mechanism.  The warning can be safely ignored.  Make sure you
have the Packet Socket driver compiled in or installed as a module, or
IPTraf will fail (and so will others like it: tcpdump, netwatch, etc).

Use of the latest glibc 2.x is also recommended.  But libc5 works fine.

WHERE IS IT NOW?

IPTraf 2 has a reorganized menu structure.  A new facility has been
added, and some statistical pieces have been moved.  The TCP/UDP service
monitor has been moved to Statistical breakdowns/By TCP/UDP port.  The
packet size distribution has also been moved from the detailed interface
statistics screen to a facility of its own; select Statistical
breakdowns/By packet size.

COPYING AND DISTRIBUTION

This software is OSI Certified Open Source Software
OSI Certified is a certification mark of the Open Source Initiative.

Redistribution and modification of this software is permitted under the
terms of the GNU General Public License.  See the included COPYING file
for details.

FOR FURTHER INFORMATION

Full information is in the manual in the Documentation directory.  See
also the CHANGES file for a record of fixes and new features.  Updates and
announcements are in the IPTraf Web page indicated above.  Other README
files contain some other bits of information.