Re: http Traffic Anayalsis

To: debian-user@lists.debian.org
Subject: Re: http Traffic Anayalsis
From: bcml@swiftdsl.com.au
Date: Fri, 3 Dec 2004 15:26:31 +1100 (EST)
Message-id: <[🔎] 12994.218.214.46.95.1102047991.squirrel@webmail.swiftdsl.com.au>

> It's a little unrelated to Debian but I'm looking for a package that
> will allow me to sniff http traffic and give me some traffic
> anayalsis.
>
> Essentially I've got a Squid proxy server dishing out cache web
> traffic and a big difference in traffic from the bill from our ISP to
> our Squid logs.
<snap>
> I did a little google searching but to no avail.  I'm trying out
> Ethereal which is great but is perhaps too much.  I just want to find
> out where the Port 80 traffic is going and get some graphs.  Any
> ideas?

I was going to suggest ethereal but if you don't want that (you are aware
that it can filter the traffic collected don't you? (eg only collect port
80 traffic...). There are also others, the only one I can recall is
tcpdump (but it's a bit more advanced/difficult IIRC).

Other than that I am out of suggestions except for (although it's not a
usual way of doing thigs) you could setup squid to do transparent proxing
(but not actually cache anything, just use it for stats gathering) and use
existing squid analysis tools to grep the squid logs...

I'm no expert in traffic analysis so the above might need some
verification...

Reply to:

Prev by Date: Re: k3b won't fully ackowledge a friends CDR/CDRW
Next by Date: Re: difficulty starting mysql server
Previous by thread: Re: http Traffic Anayalsis
Next by thread: Network down, reboot fixes, update
Index(es):
- Date
- Thread