sansguidon
/
bookmarks
1
0
Fork 0
Code Issues 16 Pull Requests 1 Packages Projects 1 Releases Activity

Watching active IP connections on Linux

This commit is contained in:
Morgan 2019-10-12 14:31:47 +02:00 committed by GitHub
parent a776ae4a6b
commit 33cd208e71
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
cheat/network.md
View File

@ -8,3 +8,16 @@
### Undo the previous rule
* `iptables -D INPUT -s 35.196.128.87 -j DROP`
### Watching active IP connections on Linux
Sources :
* [Joyent Support](https://help.joyent.com/hc/en-us/articles/226687427-Watching-active-IP-connections-Linux) - (2016) Watching active IP connections - Linux
* [Super User](https://superuser.com/a/848966/453117)
* [Server Fault](https://serverfault.com/a/353134/298315)
#### Incoming connections:
`watch -d -n1 lsof -i`
#### Trace all connections on specific port to `/var/log/messages` (syslog) using iptables :
`sudo iptables -I INPUT -p tcp --dport 443 --syn -j LOG --log-prefix "HTTPS SYN: "`
#### Trace all connections on specific port to `/var/log/messages` (syslog) using iptables :
`sudo iptables -I INPUT -p tcp --match multiport --dports 443,636,389,8095,80 --syn -j LOG --log-prefix "HTTPS SYN: "`