[Semibug] Network tool needed

Josh Grosse josh at jggimi.net
Mon Feb 4 17:48:12 EST 2019


On Mon, Feb 04, 2019 at 01:57:33PM -0500, Mike Wayne wrote:
> My Google fu is failing me, so I'll ask here.
> 
> I'm looking for a tool to report the top traffic IP addresses over
> time on a server. iperf is very close but it's screen based. I'd
> just like to see the top 15-25 IP address sources/destinations since
> a particular date (like the last week, the last month). I don't
> need any graphs, just a number per IP address. Preference is to do
> it via a simple simple tool, not with firwewall rules or client/server
> stuff.
> 
> Ideally, I could say "show the last NN days" whenever but I'd settle
> for a weekly and a monthly report.
> 
> Any suggestions?

This has the sound of network flow statistics collection via the kernel
and simple reporting/monitoring with nfdump.  nfdump is decidedly
non-graphical.  If you ever want pretty graphs and charts, nfsen
is a php webserver front-end for nfdump.

While I've been an nfdump/nfsen user, I'm just a some-time dabbling
amateur.  Our chairman wrote the book on it:

Network Flow Analysis, ISBN 978-1593272036.



More information about the Semibug mailing list