Deciphering the output from tcpflow?

To: debian-user@lists.debian.org
Subject: Deciphering the output from tcpflow?
From: Robert Tilley <tilleyrw@cfl.rr.com>
Date: Tue, 2 Nov 2004 19:11:43 -0500
Message-id: <[🔎] 200411021911.43457.tilleyrw@cfl.rr.com>

To discover the identity of the process sending unknown traffic on eth0, it 
was suggested that I run tcpflow.  The result and another question follows:

root@debian-rtg:/home/tilleyrw/tcpflow-dumps# ls -S
065.032.005.052.00110-192.168.001.103.33847
065.032.005.052.00110-192.168.001.103.33846
192.168.001.103.33846-065.032.005.052.00110
192.168.001.103.33847-065.032.005.052.00110

Now that I know the specifics of From and To about the traffic, how does that 
help me in terms of identifying the offending process IDs?
-- 
Let not the sands of time get in your lunch.

Reply to:

Follow-Ups:
- Re: Deciphering the output from tcpflow?
  - From: Kevin Mark <kmark+debian-user@pipeline.com>
- Re: Deciphering the output from tcpflow?
  - From: Pigeon <jah.pigeon@ukonline.co.uk>
- Re: Deciphering the output from tcpflow?
  - From: Henrique de Moraes Holschuh <hmh@debian.org>

Prev by Date: Re: raid
Next by Date: Re: raid
Previous by thread: Re: number of files in directory?
Next by thread: Re: Deciphering the output from tcpflow?
Index(es):
- Date
- Thread