[KLUG Members] logging internet connection attempts

[Jason Edward Durrett]

Snort is a great tool to use to figure out what an application is trying
to do.  If you are on a quite network something like this would work:

snort -vdC | more

If there are a lot of things going on you can narrow by host mac etc-
something like this;

snort -vdC host domino_daughter | more



Jason Edward Durrett
B. Shackman Company

Phone: 1-269-484-1000
Fax: 1-269-484-1010
web:  www.shackman.com




Eric Beversluis wrote:
> At work we're trying to figure out what port a program is trying to
> use to make a connection. We think there's a firewall problem at the
> other end and we have to know which port to have opened. Is there
> something in Linux that logs or can be set to log such attempts? I
> don't think netstat will do, since I think it only give a picture of
> existing connections.
>  
> Here's the situation: We're setting up Lotus Domino servers as
> secondary servers to an existing server. We have to be able to do this
> over the internet, using the "mother" server's public IP address. When
> we do it from the office using a VPN tunnel between the server being
> set up and the "mother" server, it works fine, but it doesn't work
> when we try the internet/public IP address way. Hence the conclusion
> that it's a firewall/port issue on the "mother" server and the need to
> find out what port the Domino Server Setup Utility is trying to use.
> (Once the setup is complete there "daughter" and "mother" have no
> trouble communicating over the usual Domino port.)
>  
> Thanks.
> EB
> ------------------------------------------------------------------------
>
> _______________________________________________
> Members mailing list
> Members at kalamazoolinux.org
> 
>   
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.kalamazoolinux.org/pipermail/members/attachments/20080409/954a917a/attachment.html