Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [network-traffic]

113 questions
49
votes
7 answers

How can I filter https when monitoring traffic with Wireshark?

I want to observe the HTTPs protocol. How can I use a Wireshark filter to do that?
Amirreza
  • 684
  • 2
  • 7
  • 12
24
votes
9 answers

Linux: How to measure daily/montly network traffic?

I need to keep statistics of daily network traffic for a linux machine (CentOS 5). Is there a way to do it using standard/native tools or utilities? Or do I have to dowload special software for that? Thanks.
GetFree
  • 1,500
  • 7
  • 23
  • 37
15
votes
4 answers

How do I get the number of (currently) established TCP connections for a specific port?

How do I get the number of (currently) established TCP connections for a specific port? I have managed to get counters for traffic working by doing i.e for outgoing RTMP. iptables -N $CHAIN iptables -I OUTPUT -j $CHAIN iptables -A $CHAIN -p tcp…
James Bennet
  • 173
  • 1
  • 1
  • 6
12
votes
3 answers

Check incoming network traffic in real time?

Is there a way I can monitor incoming network traffic in real time on my server? Preferably in terms of *bps Running Ubuntu
Rob
  • 2,393
  • 9
  • 33
  • 52
11
votes
5 answers

Network Stress Test Tool

I need a tool to stress test our network in between two machines. The app should send out a packet to machine 2, machine 2 should send it back, machine 1 verifys the packet is correct, generates a new packet and the process starts all over. Anyone…
shaiss
  • 337
  • 2
  • 6
  • 20
9
votes
6 answers

Generate a limited amount of random network traffic between 2 hosts

I'm trying to find a utility that will allow me to generate a constant flow of random network traffic at a specified rate between 2 hosts. The utility needs to run on Windows and OSX. I've tried iperf but it seems to be more oriented toward…
Andrew S
  • 508
  • 3
  • 7
  • 12
8
votes
2 answers

Varnish running out of open ports, lots of SYN_SENT connections

Recently we've been experiencing issues with our Varnish (3x) -> Apache (3x) setup, resulting in a huge spike in SYN_SENT connections. The spike itself is due to the amount of new traffic hitting the site (not a DDOS of any kind), and it seems like…
user150997
  • 81
  • 1
  • 2
7
votes
1 answer

How to set up IAM Role Permissions for VPC CloudWatch logs?

I am trying to allow aws to start my log service, and I have my log streams, and log groups added already. When i got to my VPC dashboard, the status of the Flow Log I'm interested in says: Access Error. The IAM role for your flow logs does not…
makansij
  • 265
  • 1
  • 5
  • 12
7
votes
3 answers

How to reproduce http traffic of a real site in another environment (e.g. VM)

There is a bug in my web application which I cannot reproduce. All the logs look ok or at least I cannot see anything unusual. But it happens. So I thought I could record all the traffic to/from my web site waiting for the bug to happen and having…
tomazy
  • 473
  • 1
  • 6
  • 8
6
votes
1 answer

How to extract X.509 certificate from live network traffic automatically on Linux OS

I will appreciate if someone can point me How to extract an X.509 certificate from live network traffic automatically during the handshake phase between client and server on Linux OS. A similar question has been asked quiet some time back…
Prasanth
  • 61
  • 1
5
votes
1 answer

Incredibly high peak of traffic (Network In) on AWS

I've found something extremely werid on my EC2 instance today; a peak on the "Network In" that goes beyond anything that had happened before, as you can see in the screenshot. Any idea about how to check some logs that help me understand what has…
vanderflo
  • 71
  • 4
5
votes
3 answers

Can tail slow down log writing speed on Linux (ext3)?

I'm wondering if tailf can generate blocking I/O which will slow down server responsiveness due to logging. For ex. assuming the following setup: Debian 5.1 linux server (foo) which is managed via terminal (foo is hosted on EC2). Foo runs several…
Maxim Veksler
  • 2,725
  • 10
  • 28
  • 32
4
votes
0 answers

Limiting incoming traffic with tc police

I have a requirement to limit the total incoming traffic to 5mbit. I know this can be achieved by using the following tc command: tc filter add dev eth0 parent ffff: protocol ip u32 match u32 0 0 police rate 5mbit burst 10k drop flowid…
Shihab Pullissery
  • 47
  • 7
4
votes
1 answer

Why is the iptables byte count for raw PREROUTING 0?

I plan to use iptables to measure my Internet traffic (inspired by Peter Krumins' great article http://www.catonmat.net/blog/traffic-accounting-with-iptables). The computer which is intended to measure traffic currently forwards all LAN traffic to…
ideaboxer
  • 43
  • 6
4
votes
2 answers

Do you trust LACP?

Are there any reasons why I should not rely on LACP when designing network topology? I exactly mean L2 switch to hypervisor connection, so it is the place where agregated traffic of VMs cumulates. We are talking about 5 x 1 GbE LACP bonding. I am in…
Andy Coarse
  • 51
  • 5
1
2 3 4 5 6 7 8