hallo,
also wir haben bei uns aufn server auf einmal heute über 11GB Traffic.. is zwar nicht viel für die meisten hier.. aber für uns schon da wir normalerweise nur 3GB am tag haben... haben bei uns iptables am laufen und nur die ports offen die wir brauchen für :
ssh,apache,gameserver,bouncer,stream´s ...
innerhalb von 2 stunden hatten wir traffic von insg. 5 GB ... weiss jemand was ich dagegen unternehmen kann ?
bzw. wo ich gucken kann was gemacht/versucht wurde?
in der /var/log/syslog stand nix annomales drinne....
MfG
mc
traffic
-
majortermi
- Userprojekt
- Posts: 916
- Joined: 2002-06-17 16:09
Re: traffic
Am besten du schaust mal mit netstat nach, welche Verbindungen gerade offen sind und liest ggf. man den Traffic, der so über Netzwerk geht, mit tcpdump mit.
Erst nachlesen, dann nachdenken, dann nachfragen... :)
Warum man sich an diese Reihenfolge halten sollte...
Warum man sich an diese Reihenfolge halten sollte...
-
mcdave2k1
- Posts: 31
- Joined: 2003-10-29 22:37
- Location: Monheim
Re: traffic
hi also das is nen auszug von tcpdump während einer sekunde..:
netstat sieht dann so aus :
kann damit net grade viel anfangen...
mfg
mc
Code: Select all
00:51:55.105695 serge.45944 > ns1.tux-service.de.domain: 45802+ PTR? 243.50.241.62.in-addr.arpa. (44) (DF)
00:51:55.105702 irc2.port80.se.ircd > serge.50825: . ack 32 win 2896 <nop,nop,timestamp 849092213 345931401> (DF)
00:51:55.136402 serge.45944 > ns1.tux-service.de.domain: 45803+ PTR? 125.58.210.82.in-addr.arpa. (44) (DF)
00:51:55.136774 arp who-has 62.140.16.22 tell 62.140.16.1
00:51:55.137201 arp who-has 62.140.16.25 tell 62.140.16.1
00:51:55.151346 serge.45944 > ns1.tux-service.de.domain: 45804+ PTR? 55.17.210.82.in-addr.arpa. (43) (DF)
00:51:55.165745 serge.45944 > ns1.tux-service.de.domain: 45805+ PTR? 126.58.210.82.in-addr.arpa. (44) (DF)
00:51:55.194360 serge.45944 > ns1.tux-service.de.domain: 45806+ PTR? 127.58.210.82.in-addr.arpa. (44) (DF)
00:51:55.195433 irc2.port80.se.ircd > serge.53778: . ack 1616834305 win 2896 <nop,nop,timestamp 849092222 345931411> (DF)
00:51:55.209729 serge.45944 > ns1.tux-service.de.domain: 45807+ PTR? 129.58.210.82.in-addr.arpa. (44) (DF)
00:51:55.211261 arp who-has 82.210.17.60 tell core01.dus.tux-service.de
00:51:55.215455 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 85125:85177(52) ack 304866 win 65535 (DF)
00:51:55.218708 arp who-has 82.210.17.62 tell core01.dus.tux-service.de
00:51:55.307544 serge.35650 > skyline.ludd.luth.se.6668: . ack 51073 win 62757 <nop,nop,timestamp 345931436 423061569> (DF)
00:51:55.330550 serge.45944 > ns1.tux-service.de.domain: 45809+ PTR? 131.58.210.82.in-addr.arpa. (44) (DF)
00:51:55.330633 ip168.21.1411O-CUD12K-04.ish.de.3034 > serge.4000: . ack 250216 win 64221 (DF) [tos 0x28]
00:51:55.347974 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 85905:85957(52) ack 309072 win 65535 (DF)
00:51:55.351945 arp who-has 62.140.16.233 tell 62.140.16.1
00:51:55.355756 skyline.ludd.luth.se.6668 > serge.35650: P 51073:52216(1143) ack 221 win 2896 <nop,nop,timestamp 423061577 345931436> (DF)
00:51:55.355789 serge.35650 > skyline.ludd.luth.se.6668: . ack 52216 win 62757 <nop,nop,timestamp 345931440 423061577> (DF)
00:51:55.356613 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 85957:86009(52) ack 309072 win 65535 (DF)
00:51:55.363652 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 86009:86061(52) ack 309072 win 65535 (DF)
00:51:55.363693 skyline.ludd.luth.se.ircd > serge.35276: P 3563490110:3563490179(69) ack 878367456 win 2896 <nop,nop,timestamp 423061578 345930766> (DF)
00:51:55.363714 serge.35276 > skyline.ludd.luth.se.ircd: . ack 69 win 62730 <nop,nop,timestamp 345931441 423061578> (DF)
00:51:55.364914 serge.31601 > dsl-082-082-116-005.arcor-ip.net.63815: P 2759085506:2759085575(69) ack 1052376182 win 5840 (DF)
00:51:55.365268 p5087B710.dip.t-dialin.net.4623 > serge.31591: P 135:148(13) ack 49056 win 64585 (DF)
00:51:55.365303 serge.31591 > p5087B710.dip.t-dialin.net.4623: P 49056:49983(927) ack 148 win 5840 (DF)
00:51:55.365552 serge.35650 > skyline.ludd.luth.se.6668: P 221:235(14) ack 52216 win 62757 <nop,nop,timestamp 345931441 423061577> (DF)
00:51:55.370100 wineasy2.se.quakenet.org.6668 > serge.39745: P 2427:2585(158) ack 28 win 2500 <nop,nop,timestamp 1582514146 345931438>
00:51:55.370140 serge.39745 > wineasy2.se.quakenet.org.6668: . ack 2585 win 16500 <nop,nop,timestamp 345931442 1582514146> (DF)
00:51:55.370326 wineasy2.se.quakenet.org.6668 > serge.39745: . 2585:3085(500) ack 28 win 2500 <nop,nop,timestamp 1582514146 345931438>
00:51:55.370340 serge.39745 > wineasy2.se.quakenet.org.6668: . ack 3085 win 16500 <nop,nop,timestamp 345931442 1582514146> (DF)
00:51:55.370419 wineasy2.se.quakenet.org.6668 > serge.39745: . 3085:3585(500) ack 28 win 2500 <nop,nop,timestamp 1582514146 345931438>
00:51:55.370434 serge.39745 > wineasy2.se.quakenet.org.6668: . ack 3585 win 16500 <nop,nop,timestamp 345931442 1582514146> (DF)
00:51:55.370479 wineasy2.se.quakenet.org.6668 > serge.39745: . 3585:4085(500) ack 28 win 2500 <nop,nop,timestamp 1582514146 345931438>
00:51:55.370487 serge.39745 > wineasy2.se.quakenet.org.6668: . ack 4085 win 16500 <nop,nop,timestamp 345931442 1582514146> (DF)
00:51:55.379682 serge.45944 > ns1.tux-service.de.domain: 45810+ PTR? 57.17.210.82.in-addr.arpa. (43) (DF)
00:51:55.381941 arp who-has 62.140.16.234 tell 62.140.16.1
00:51:55.381970 arp who-has 62.140.16.235 tell 62.140.16.1
00:51:55.381974 arp who-has 62.140.16.236 tell 62.140.16.1
00:51:55.381992 arp who-has 62.140.16.237 tell 62.140.16.1
00:51:55.382013 arp who-has 62.140.16.238 tell 62.140.16.1
00:51:55.382682 skyline.ludd.luth.se.ircd > serge.41798: P 1666:1818(152) ack 114 win 2896 <nop,nop,timestamp 423061580 345931109> (DF)
00:51:55.382705 serge.41798 > skyline.ludd.luth.se.ircd: . ack 1818 win 62917 <nop,nop,timestamp 345931443 423061580> (DF)
00:51:55.387740 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 86165:86217(52) ack 309072 win 65535 (DF)
00:51:55.392602 pD9550DA1.dip.t-dialin.net.3190 > serge.31393: . ack 9785 win 31951 (DF)
00:51:55.393422 ns1.tux-service.de.domain > serge.45944: 45810 NXDomain* 0/1/0 (112) (DF)
00:51:55.393889 serge.45944 > ns1.tux-service.de.domain: 45811+ PTR? 72.17.210.82.in-addr.arpa. (43) (DF)
00:51:55.394624 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 86217:86269(52) ack 309072 win 65535 (DF)
00:51:55.401932 arp who-has 80.190.48.254 tell 80.190.48.1
00:51:55.401965 arp who-has 62.140.16.239 tell 62.140.16.1
00:51:55.401971 arp who-has 62.140.16.240 tell 62.140.16.1
00:51:55.403294 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 86269:86321(52) ack 309072 win 65535 (DF)
00:51:55.404355 skyline.ludd.luth.se.6668 > serge.35650: . 52216:53664(1448) ack 221 win 2896 <nop,nop,timestamp 423061582 345931440> (DF)
00:51:55.404386 skyline.ludd.luth.se.6668 > serge.35650: P 53664:54249(585) ack 221 win 2896 <nop,nop,timestamp 423061582 345931440> (DF)
00:51:55.404413 serge.35650 > skyline.ludd.luth.se.6668: . ack 54249 win 62757 <nop,nop,timestamp 345931445 423061582> (DF)
00:51:55.405388 pD9E3BAA1.dip.t-dialin.net.10336 > serge.www: . ack 28001 win 16800 (DF)
00:51:55.405915 wineasy2.se.quakenet.org.6668 > serge.39745: . 4085:4585(500) ack 42 win 2500 <nop,nop,timestamp 1582514146 345931439>
00:51:55.405931 serge.39745 > wineasy2.se.quakenet.org.6668: . ack 4585 win 16500 <nop,nop,timestamp 345931445 1582514146> (DF)
00:51:55.408395 ns1.tux-service.de.domain > serge.45944: 45811 NXDomain* 0/1/0 (112) (DF)
00:51:55.408865 serge.45944 > ns1.tux-service.de.domain: 45812+ PTR? 73.17.210.82.in-addr.arpa. (43) (DF)
00:51:55.410037 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 86321:86373(52) ack 309072 win 65535 (DF)
00:51:55.412615 213.48.150.5.ircd > serge.49104: P 9850:9920(70) ack 10 win 2896 <nop,nop,timestamp 685074989 345931416> (DF)
00:51:55.412636 serge.49104 > 213.48.150.5.ircd: . ack 9920 win 62769 <nop,nop,timestamp 345931446 685074989> (DF)
00:51:55.413822 serge.31393 > pD9550DA1.dip.t-dialin.net.3190: P 9785:9855(70) ack 0 win 7504 (DF)
00:51:55.418886 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 86373:86425(52) ack 309072 win 65535 (DF)
00:51:55.418924 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: . ack 86425 win 8576 (DF) [tos 0x10]
00:51:55.421930 arp who-has 82.210.17.46 tell core01.dus.tux-service.de
00:51:55.424867 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 86425:86477(52) ack 309072 win 65535 (DF)
00:51:55.425547 arp who-has ich.sehe.d.ein-en.de tell core01.dus.tux-service.de
00:51:55.431731 ns1.tux-service.de.domain > serge.45944: 45812 NXDomain* 0/1/0 (112) (DF)
00:51:55.431925 arp who-has 82.210.17.48 tell core01.dus.tux-service.de
00:51:55.434268 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 86477:86529(52) ack 309072 win 65535 (DF)
00:51:55.440606 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 86529:86581(52) ack 309072 win 65535 (DF)
00:51:55.441856 wineasy2.se.quakenet.org.6668 > serge.39745: P 4585:4927(342) ack 42 win 2500 <nop,nop,timestamp 1582514146 345931445>
00:51:55.441885 serge.39745 > wineasy2.se.quakenet.org.6668: . ack 4927 win 16500 <nop,nop,timestamp 345931449 1582514146> (DF)
00:51:55.442354 wineasy2.se.quakenet.org.6668 > serge.39745: . 4927:5427(500) ack 42 win 2500 <nop,nop,timestamp 1582514146 345931445>
00:51:55.442365 serge.39745 > wineasy2.se.quakenet.org.6668: . ack 5427 win 16500 <nop,nop,timestamp 345931449 1582514146> (DF)
00:51:55.442616 wineasy2.se.quakenet.org.6668 > serge.39745: . 5427:5927(500) ack 42 win 2500 <nop,nop,timestamp 1582514146 345931445>
00:51:55.442627 serge.39745 > wineasy2.se.quakenet.org.6668: . ack 5927 win 16500 <nop,nop,timestamp 345931449 1582514146> (DF)
00:51:55.442672 wineasy2.se.quakenet.org.6668 > serge.39745: . 5927:6427(500) ack 42 win 2500 <nop,nop,timestamp 1582514146 345931445>
00:51:55.442723 serge.39745 > wineasy2.se.quakenet.org.6668: . ack 6927 win 16500 <nop,nop,timestamp 345931449 1582514146> (DF)
00:51:55.449613 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 86581:86633(52) ack 309072 win 65535 (DF)
00:51:55.658121 serge.45944 > ns1.tux-service.de.domain: 45813+ PTR? 22.16.140.62.in-addr.arpa. (43) (DF)
00:51:55.658739 ns1.tux-service.de.domain > serge.45944: 45813 ServFail 0/0/0 (43) (DF)
00:51:55.658800 serge.45944 > ns01.pro-gb.de.domain: 45813+ PTR? 22.16.140.62.in-addr.arpa. (43) (DF)
00:51:55.660644 ns01.pro-gb.de.domain > serge.45944: 45813 NXDomain* 0/1/0 (101) (DF)
00:51:55.660828 serge.45944 > ns1.tux-service.de.domain: 45814+ PTR? 25.16.140.62.in-addr.arpa. (43) (DF)
00:51:55.661177 ns1.tux-service.de.domain > serge.45944: 45814 ServFail 0/0/0 (43) (DF)
00:51:55.661203 serge.45944 > ns01.pro-gb.de.domain: 45814+ PTR? 25.16.140.62.in-addr.arpa. (43) (DF)
00:51:55.662255 ns01.pro-gb.de.domain > serge.45944: 45814 NXDomain* 0/1/0 (101) (DF)
00:51:55.662458 serge.45944 > ns1.tux-service.de.domain: 45815+ PTR? 60.17.210.82.in-addr.arpa. (43) (DF)
00:51:55.663901 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 87985:88037(52) ack 312768 win 64643 (DF)
00:51:55.672560 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 88037:88089(52) ack 312768 win 64643 (DF)
00:51:55.679159 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 88089:88141(52) ack 312768 win 64643 (DF)
00:51:55.679205 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: . ack 88141 win 8576 (DF) [tos 0x10]
00:51:55.679562 dsl-082-082-116-005.arcor-ip.net.62019 > serge.31600: . ack 2751379915 win 16233 (DF)
00:51:55.687398 dsl-II-175.kotikaista.weppi.fi.55272 > serge.31436: . ack 1305595435 win 16197 (DF)
00:51:55.688076 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 88141:88193(52) ack 312768 win 64643 (DF)
00:51:55.691263 ns1.tux-service.de.domain > serge.45944: 45815 NXDomain* 0/1/0 (112) (DF)
00:51:55.691327 ns1.tux-service.de.domain > serge.45936: 45744 ServFail 0/0/0 (43) (DF)
00:51:55.691359 serge > ns1.tux-service.de: icmp: serge udp port 45936 unreachable [tos 0xc0]
00:51:55.692732 serge.45944 > ns1.tux-service.de.domain: 45816+ PTR? 62.17.210.82.in-addr.arpa. (43) (DF)
00:51:55.694678 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 88193:88245(52) ack 312768 win 64643 (DF)
00:51:55.700908 pD9521813.dip.t-dialin.net.3257 > serge.4000: . ack 186742 win 32767 (DF)
00:51:55.703592 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 88245:88297(52) ack 312768 win 64643 (DF)
00:51:55.704130 ip203.48.1411C-CUD12K-01.ish.de.22410 > serge.27015: udp 12 [tos 0x28]
00:51:55.704351 serge.27015 > ip203.48.1411C-CUD12K-01.ish.de.22410: udp 144 (DF)
00:51:55.707353 ns1.tux-service.de.domain > serge.45944: 45816 NXDomain* 0/1/0 (112) (DF)
00:51:55.707794 serge.45944 > ns1.tux-service.de.domain: 45817+ PTR? 233.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.708259 ns1.tux-service.de.domain > serge.45944: 45817 ServFail 0/0/0 (44) (DF)
00:51:55.708320 serge.45944 > ns01.pro-gb.de.domain: 45817+ PTR? 233.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.708773 213.48.150.5.ircd > serge.49104: P 9920:10009(89) ack 10 win 2896 <nop,nop,timestamp 685075019 345931446> (DF)
00:51:55.708801 serge.49104 > 213.48.150.5.ircd: . ack 10009 win 62769 <nop,nop,timestamp 345931476 685075019> (DF)
00:51:55.710040 serge.49104 > 213.48.150.5.ircd: P 10:45(35) ack 10009 win 62769 <nop,nop,timestamp 345931476 685075019> (DF)
00:51:55.710047 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 88297:88349(52) ack 312768 win 64643 (DF)
00:51:55.710338 ns01.pro-gb.de.domain > serge.45944: 45817 NXDomain* 0/1/0 (102) (DF)
00:51:55.710504 pD9550DA1.dip.t-dialin.net.3190 > serge.31393: . ack 9855 win 31881 (DF)
00:51:55.710526 serge.31393 > pD9550DA1.dip.t-dialin.net.3190: P 9855:9909(54) ack 0 win 7504 (DF)
00:51:55.719115 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 88349:88401(52) ack 312768 win 64643 (DF)
00:51:55.719142 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: . ack 88401 win 8576 (DF) [tos 0x10]
00:51:55.725704 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 88401:88453(52) ack 312768 win 64643 (DF)
00:51:55.731433 ip203.48.1411C-CUD12K-01.ish.de.22410 > serge.27015: udp 12 [tos 0x28]
00:51:55.731646 serge.27015 > ip203.48.1411C-CUD12K-01.ish.de.22410: udp 6 (DF)
00:51:55.732329 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: . ack 315572 win 65535 (DF)
00:51:55.732368 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: . 330892:332294(1402) ack 88453 win 8576 (DF) [tos 0x10]
00:51:55.732374 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: . 332294:333696(1402) ack 88453 win 8576 (DF) [tos 0x10]
00:51:55.736382 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: . ack 316974 win 65535 (DF)
00:51:55.736390 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: P 333696:334572(876) ack 88453 win 8576 (DF) [tos 0x10]
00:51:55.736893 bones.splatterworld.de.6666 > serge.34180: P 3767:3876(109) ack 138 win 2896 <nop,nop,timestamp 3241198573 345931269> (DF)
00:51:55.736907 serge.34180 > bones.splatterworld.de.6666: . ack 3876 win 62767 <nop,nop,timestamp 345931478 3241198573> (DF)
00:51:55.860819 serge.45944 > ns1.tux-service.de.domain: 45818+ PTR? 234.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.869250 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89285:89337(52) ack 316974 win 65535 (DF)
00:51:55.869305 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: . ack 89337 win 8576 (DF) [tos 0x10]
00:51:55.875890 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89337:89389(52) ack 316974 win 65535 (DF)
00:51:55.881892 arp who-has 82.210.17.67 tell core01.dus.tux-service.de
00:51:55.883243 pelikaista.fi.quakenet.org.6669 > serge.48356: . ack 1832923289 win 2887 <nop,nop,timestamp 556642643 345931489> (DF)
00:51:55.883369 pelikaista.fi.quakenet.org.6669 > serge.48356: P 0:64(64) ack 1 win 2896 <nop,nop,timestamp 556642643 345931489> (DF)
00:51:55.884736 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89389:89441(52) ack 316974 win 65535 (DF)
00:51:55.891431 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89441:89493(52) ack 316974 win 65535 (DF)
00:51:55.891894 arp who-has 82.210.17.68 tell core01.dus.tux-service.de
00:51:55.897750 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: . ack 319778 win 65535 (DF)
00:51:55.897782 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: . 334572:335974(1402) ack 89493 win 8576 (DF) [tos 0x10]
00:51:55.897790 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: . 335974:337376(1402) ack 89493 win 8576 (DF) [tos 0x10]
00:51:55.902410 ip168.21.1411O-CUD12K-04.ish.de.3034 > serge.4000: P 26636:26980(344) ack 250216 win 64221 (DF) [tos 0x28]
00:51:55.902423 serge.4000 > ip168.21.1411O-CUD12K-04.ish.de.3034: . ack 26980 win 27740 (DF)
00:51:55.902440 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: . ack 321180 win 65535 (DF)
00:51:55.902448 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: P 337376:338704(1328) ack 89493 win 8576 (DF) [tos 0x10]
00:51:55.902610 serge.4000 > ip20.21.1411O-CUD12K-04.ish.de.1252: P 232127:232471(344) ack 32755 win 24656 (DF)
00:51:55.902659 serge.4000 > dsl-082-082-107-095.arcor-ip.net.3360: P 275507:275851(344) ack 1317 win 24656 (DF)
00:51:55.905415 arp who-has serge tell ns1.tux-service.de
00:51:55.905426 arp reply serge is-at 0:1:2:60:b3:0
00:51:55.910986 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89493:89545(52) ack 321180 win 65535 (DF)
00:51:55.911903 arp who-has 82.210.17.72 tell core01.dus.tux-service.de
00:51:55.919351 serge.45944 > ns1.tux-service.de.domain: 45819+ PTR? 235.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.920247 serge.45944 > ns1.tux-service.de.domain: 45820+ PTR? 236.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.921066 serge.45944 > ns1.tux-service.de.domain: 45821+ PTR? 237.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.921855 serge.45944 > ns1.tux-service.de.domain: 45822+ PTR? 238.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.923185 serge.45944 > ns1.tux-service.de.domain: 45823+ PTR? 239.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.923531 ns1.tux-service.de.domain > serge.45944: 45823 ServFail 0/0/0 (44) (DF)
00:51:55.923555 serge.45944 > ns01.pro-gb.de.domain: 45823+ PTR? 239.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.924105 ns01.pro-gb.de.domain > serge.45944: 45823 NXDomain* 0/1/0 (102) (DF)
00:51:55.924189 serge.45944 > ns1.tux-service.de.domain: 45824+ PTR? 240.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.924508 ns1.tux-service.de.domain > serge.45944: 45824 ServFail 0/0/0 (44) (DF)
00:51:55.924532 serge.45944 > ns01.pro-gb.de.domain: 45824+ PTR? 240.16.140.62.in-addr.arpa. (44) (DF)
00:51:55.924887 ns01.pro-gb.de.domain > serge.45944: 45824 NXDomain* 0/1/0 (102) (DF)
00:51:55.926319 arp who-has 62.241.34.171 tell core01.dus.tux-service.de
00:51:55.926693 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89597:89649(52) ack 321180 win 65535 (DF)
00:51:55.927825 dsl-082-083-070-092.arcor-ip.net.3405 > serge.4000: . ack 286110 win 64438 (DF)
00:51:55.930893 irc2.port80.se.6668 > serge.48167: P 976:1107(131) ack 10 win 2896 <nop,nop,timestamp 849092295 345931439> (DF)
00:51:55.930936 serge.48167 > irc2.port80.se.6668: . ack 1107 win 62677 <nop,nop,timestamp 345931498 849092295> (DF)
00:51:55.931184 serge.31605 > dsl-082-082-116-005.arcor-ip.net.61601: P 2773487965:2773488096(131) ack 1055948961 win 5840 (DF)
00:51:55.933063 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89649:89701(52) ack 321180 win 65535 (DF)
00:51:55.942191 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89701:89753(52) ack 321180 win 65535 (DF)
00:51:55.942203 serge.ssh > p508D1CA3.dip.t-dialin.net.1969: . ack 89753 win 8576 (DF) [tos 0x10]
00:51:55.945232 skyline.ludd.luth.se.ircd > serge.35276: P 69:200(131) ack 1 win 2896 <nop,nop,timestamp 423061636 345931441> (DF)
00:51:55.945246 serge.35276 > skyline.ludd.luth.se.ircd: . ack 200 win 62730 <nop,nop,timestamp 345931499 423061636> (DF)
00:51:55.945480 serge.31601 > dsl-082-082-116-005.arcor-ip.net.63815: P 69:200(131) ack 1 win 5840 (DF)
00:51:55.948467 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89753:89805(52) ack 321180 win 65535 (DF)
00:51:55.957686 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89805:89857(52) ack 321180 win 65535 (DF)
00:51:55.963940 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89857:89909(52) ack 321180 win 65535 (DF)
00:51:55.972961 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89909:89961(52) ack 321180 win 65535 (DF)
00:51:55.979391 p508D1CA3.dip.t-dialin.net.1969 > serge.ssh: P 89961:90013(52) ack 321180 win 65535 (DF)
Code: Select all
tcp 0 0 serge:31436 dsl-II-175.kotika:55272 ESTABLISHED
tcp 0 0 serge:31393 pD9550DA1.dip.t-di:3190 ESTABLISHED
tcp 0 0 serge:auth quakenet2.mediatra:3372 TIME_WAIT
tcp 0 0 serge:4000 dsl-082-083-070-09:3405 ESTABLISHED
tcp 0 0 serge:49006 mozart.tiscali.dk:ircd ESTABLISHED
tcp 0 0 serge:31634 p5087B710.dip.t-di:4627 ESTABLISHED
tcp 0 0 serge:43140 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:40780 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:31637 pD9E59321.dip.t-di:2148 ESTABLISHED
tcp 0 0 serge:4000 dsl-082-082-107-09:3360 ESTABLISHED
tcp 0 0 serge:auth 213.48.150.3:2212 TIME_WAIT
tcp 0 0 serge:48167 irc2.port80.se:6668 ESTABLISHED
tcp 0 0 serge:31346 62.138.218.206:50516 ESTABLISHED
tcp 0 0 serge:auth 213.48.150.3:2217 TIME_WAIT
tcp 0 0 serge:auth irc2.port80.se:3516 TIME_WAIT
tcp 0 0 serge:60463 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:48105 quakenet.euroserv.:ircd ESTABLISHED
tcp 0 0 serge:53143 online1.no.quakene:6668 ESTABLISHED
tcp 0 0 serge:auth quakenet.euroserv:19646 TIME_WAIT
tcp 0 0 serge:48915 irc2.port80.se:6669 ESTABLISHED
tcp 0 0 serge:auth quakenet.euroserv:19838 TIME_WAIT
tcp 0 0 serge:49021 irc1.port80.se:6668 ESTABLISHED
tcp 0 0 serge:49095 mozart.tiscali.dk:6669 ESTABLISHED
tcp 0 0 serge:31627 pD9E8801C.dip0.t-:33421 ESTABLISHED
tcp 0 0 serge:49056 irc1.port80.se:6668 ESTABLISHED
tcp 0 0 serge:53795 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:49639 online2.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:48747 irc2.port80.se:6669 ESTABLISHED
tcp 0 0 serge:48748 irc2.port80.se:6669 ESTABLISHED
tcp 0 0 serge:48806 irc2.port80.se:6669 ESTABLISHED
tcp 0 0 serge:48785 mozart.tiscali.dk:6669 ESTABLISHED
tcp 0 0 serge:auth 213.48.150.3:2341 TIME_WAIT
tcp 0 0 serge:auth pelikaista.fi.quak:3737 TIME_WAIT
tcp 0 0 serge:48284 irc1.port80.se:6669 ESTABLISHED
tcp 0 0 serge:48072 irc1.port80.se:6666 ESTABLISHED
tcp 0 0 serge:48316 mozart.tiscali.dk:6669 ESTABLISHED
tcp 0 0 serge:48153 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:34188 online2.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:58926 213.48.150.5:6668 ESTABLISHED
tcp 0 0 serge:48597 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:auth irc2.port80.se:3382 TIME_WAIT
tcp 0 0 serge:38447 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:48155 mozart.tiscali.dk:ircd ESTABLISHED
tcp 0 0 serge:53443 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:48035 irc1.port80.se:6669 ESTABLISHED
tcp 0 0 serge:48071 irc2.port80.se:6668 ESTABLISHED
tcp 0 0 serge:48349 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48917 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48938 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:31408 p50867411.dip.t-d:63773 ESTABLISHED
tcp 0 0 serge:48752 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:49099 mozart.tiscali.dk:ircd ESTABLISHED
tcp 0 0 serge:49092 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48908 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:49000 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48760 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:49010 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:32847 online1.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:49189 online1.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:49186 online1.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:57423 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:35650 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:49035 quakenet2.mediatra:6668 ESTABLISHED
tcp 0 0 serge:48141 quakenet.mediatraf:6669 ESTABLISHED
tcp 0 0 serge:auth pelikaista.fi.quak:3779 TIME_WAIT
tcp 0 0 serge:31600 dsl-082-082-116-0:62019 ESTABLISHED
tcp 0 0 serge:48928 wineasy1.se.quaken:6668 ESTABLISHED
tcp 0 0 serge:40138 online2.no.quakene:6669 ESTABLISHED
tcp 0 0 serge:8000 pD9E412BE.dip.t-di:3455 ESTABLISHED
tcp 0 0 serge:4000 ip168.21.1411O-CUD:3034 ESTABLISHED
tcp 0 0 serge:49104 213.48.150.5:ircd ESTABLISHED
tcp 0 0 serge:57909 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48749 wineasy1.se.quaken:6668 ESTABLISHED
tcp 0 0 serge:41830 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:54279 online2.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:48113 quakenet2.mediatra:ircd ESTABLISHED
tcp 0 0 serge:40274 online2.no.quakene:6669 ESTABLISHED
tcp 0 0 serge:34505 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:43556 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48788 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:31338 p508D1CA3.dip.t-di:1065 ESTABLISHED
tcp 0 0 serge:49040 quakenet.mediatraf:ircd ESTABLISHED
tcp 0 0 serge:35276 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:48927 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:31601 dsl-082-082-116-0:63815 ESTABLISHED
tcp 0 0 serge:49034 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:48822 213.48.150.3:ircd ESTABLISHED
tcp 0 0 serge:49037 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:42473 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:34488 euirc.lanlos.org:ircd ESTABLISHED
tcp 0 0 serge:48444 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 5940 serge:ssh p508D1CA3.dip.t-di:2270 ESTABLISHED
tcp 0 0 serge:48028 wineasy1.se.quaken:6668 ESTABLISHED
tcp 0 0 serge:59283 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:52729 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:34112 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:31364 muedslg-wan044.ci:61497 ESTABLISHED
tcp 0 0 serge:48109 wineasy1.se.quaken:6669 ESTABLISHED
tcp 0 0 serge:31382 p5087B710.dip.t-di:4169 ESTABLISHED
tcp 0 0 serge:43164 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:31583 p5086DA44.dip.t-d:39731 ESTABLISHED
tcp 0 0 serge:49385 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:31602 dsl-082-082-116-0:65353 ESTABLISHED
tcp 0 0 serge:4000 dsl-082-082-116-0:65405 ESTABLISHED
tcp 0 0 serge:31371 pD9520168.dip.t-di:1239 ESTABLISHED
tcp 0 0 serge:31580 pD958CF2C.dip.t-di:1046 ESTABLISHED
tcp 0 0 serge:46021 80.239.156.82:ircd ESTABLISHED
tcp 0 0 serge:31606 xdsl-213-196-217-:29669 ESTABLISHED
tcp 0 0 serge:60486 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48166 wineasy1.se.quaken:6668 ESTABLISHED
tcp 0 0 serge:31591 p5087B710.dip.t-di:4623 ESTABLISHED
tcp 0 0 serge:33898 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:38754 online1.no.quakene:6669 ESTABLISHED
tcp 0 0 serge:48245 flu-irc-01.datacom:6666 ESTABLISHED
tcp 0 0 serge:49685 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:53479 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48120 server133.multipla:ircd ESTABLISHED
tcp 0 0 serge:53618 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:53625 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48266 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:48798 irc.playerofgames.:ircd ESTABLISHED
tcp 0 0 serge:35199 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:49002 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:48200 qnet1.irc.demon.ne:6669 ESTABLISHED
tcp 0 0 serge:37465 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:53790 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48178 qnet1.irc.demon.ne:ircd ESTABLISHED
tcp 0 0 serge:58848 online1.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:35151 213.48.150.5:ircd ESTABLISHED
tcp 0 0 serge:53775 irc2.port80.se:6669 ESTABLISHED
tcp 0 0 serge:4000 pD9521813.dip.t-di:3257 ESTABLISHED
tcp 0 0 serge:31352 pD9521813.dip.t-di:3020 ESTABLISHED
tcp 0 0 serge:49819 quakenet2.mediatra:ircd ESTABLISHED
tcp 0 0 serge:auth skyline.ludd.luth.:4976 TIME_WAIT
tcp 0 0 serge:39236 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48283 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:53677 sw.de.quakenet.org:6669 ESTABLISHED
tcp 0 0 serge:37049 irc2.port80.se:6668 ESTABLISHED
tcp 0 0 serge:38802 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48154 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:48150 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:36130 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:49183 quakenet2.mediatra:ircd ESTABLISHED
tcp 0 0 serge:53786 quakenet.euroserv.:6668 ESTABLISHED
tcp 0 0 serge:48204 server133.multipla:ircd ESTABLISHED
tcp 0 0 serge:38814 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:34180 bones.splatterworl:6666 ESTABLISHED
tcp 0 0 serge:33954 213.48.150.5:ircd ESTABLISHED
tcp 0 0 serge:48837 pelikaista.fi.quak:ircd ESTABLISHED
tcp 0 0 serge:34104 wineasy1.se.quaken:6669 ESTABLISHED
tcp 0 0 serge:31384 pD9E2F80D.dip.t-di:1166 ESTABLISHED
tcp 0 0 serge:53796 quakenet.euroserv.:6669 ESTABLISHED
tcp 0 0 serge:39500 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:49796 quakenet2.mediatra:ircd ESTABLISHED
tcp 0 0 serge:45313 skyline.ludd.luth.:6669 ESTABLISHED
tcp 0 0 serge:49163 quakenet.mediatraf:ircd ESTABLISHED
tcp 0 0 serge:45648 pelikaista.fi.quak:ircd ESTABLISHED
tcp 0 0 serge:49041 server133.multipla:ircd ESTABLISHED
tcp 0 0 serge:34510 213.48.150.5:ircd ESTABLISHED
tcp 0 0 serge:33233 wineasy2.se.quaken:6668 ESTABLISHED
tcp 0 0 serge:32876 wineasy1.se.quaken:6669 ESTABLISHED
tcp 0 0 serge:50997 213.48.150.3:ircd ESTABLISHED
tcp 0 0 serge:34382 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:31582 ip136.60.1411D-CUD:1369 ESTABLISHED
tcp 0 0 serge:48356 pelikaista.fi.quak:6669 ESTABLISHED
tcp 0 0 serge:41578 online2.no.quakene:6669 ESTABLISHED
tcp 0 0 serge:41576 online2.no.quakene:6669 ESTABLISHED
tcp 0 0 serge:31636 pD9E59321.dip.t-di:1675 ESTABLISHED
tcp 0 0 serge:48389 irc.playerofgames.:ircd ESTABLISHED
tcp 0 0 serge:49174 quakenet.mediatraf:6669 ESTABLISHED
tcp 0 0 serge:41776 online2.no.quakene:6669 ESTABLISHED
tcp 0 0 serge:40328 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:32964 213.48.150.5:ircd ESTABLISHED
tcp 0 0 serge:41799 online2.no.quakene:6669 ESTABLISHED
tcp 0 0 serge:auth pelikaista.fi.quak:3516 TIME_WAIT
tcp 0 0 serge:31375 chello213047052087:1554 ESTABLISHED
tcp 0 0 serge:auth quakenet.euroserv:19607 TIME_WAIT
tcp 0 0 serge:4000 ip20.21.1411O-CUD1:1252 ESTABLISHED
tcp 0 0 serge:48913 pelikaista.fi.quak:6669 ESTABLISHED
tcp 0 0 serge:31351 ip168.21.1411O-CUD:3026 ESTABLISHED
tcp 0 0 serge:48906 irc.playerofgames.:ircd ESTABLISHED
tcp 0 0 serge:31599 dsl-082-082-116-0:64509 ESTABLISHED
tcp 0 0 serge:39063 irc1.port80.se:6668 ESTABLISHED
tcp 0 0 serge:49794 wineasy2.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:31387 pD954EBEB.dip.t-di:1195 ESTABLISHED
tcp 0 0 serge:49218 sw.de.quakenet.org:6666 ESTABLISHED
tcp 0 0 serge:49216 sw.de.quakenet.org:6666 ESTABLISHED
tcp 0 0 serge:49240 sw.de.quakenet.org:6666 ESTABLISHED
tcp 0 0 serge:49241 sw.de.quakenet.org:6666 ESTABLISHED
tcp 0 0 serge:49590 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:49165 sw.de.quakenet.org:6666 ESTABLISHED
tcp 0 0 serge:49168 sw.de.quakenet.org:6666 ESTABLISHED
tcp 0 0 serge:49169 sw.de.quakenet.org:6666 ESTABLISHED
tcp 0 0 serge:49213 sw.de.quakenet.org:6666 ESTABLISHED
tcp 0 0 serge:49261 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:60461 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:48926 online1.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:33895 irc2.port80.se:6668 ESTABLISHED
tcp 0 0 serge:33880 irc2.port80.se:6668 ESTABLISHED
tcp 0 0 serge:50503 irc1.port80.se:6669 ESTABLISHED
tcp 0 0 serge:33888 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:33892 irc1.port80.se:6668 ESTABLISHED
tcp 0 0 serge:33886 irc1.port80.se:6668 ESTABLISHED
tcp 0 0 serge:49820 mozart.tiscali.dk:ircd ESTABLISHED
tcp 0 0 serge:39095 213.48.150.3:ircd ESTABLISHED
tcp 0 0 serge:31605 dsl-082-082-116-0:61601 ESTABLISHED
tcp 0 0 serge:48151 online1.no.quakene:6668 ESTABLISHED
tcp 0 0 serge:33885 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48348 online2.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:59863 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:60318 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:58960 irc.playerofgames.:ircd ESTABLISHED
tcp 0 0 serge:32940 irc1.port80.se:6669 ESTABLISHED
tcp 0 0 serge:53187 irc2.port80.se:6668 ESTABLISHED
tcp 0 0 serge:50825 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:37773 wineasy1.se.quaken:ircd ESTABLISHED
tcp 0 0 serge:ssh p508D1CA3.dip.t-di:1969 ESTABLISHED
tcp 0 0 serge:49615 irc1.port80.se:6668 ESTABLISHED
tcp 0 0 serge:37142 213.48.150.5:6669 ESTABLISHED
tcp 0 0 serge:34260 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:4000 pD9521AC2.dip.t-di:1291 ESTABLISHED
tcp 0 0 serge:53356 quakenet.mediatraf:ircd ESTABLISHED
tcp 0 0 serge:35331 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:37127 213.48.150.5:ircd ESTABLISHED
tcp 0 0 serge:36261 irc2.port80.se:ircd ESTABLISHED
tcp 0 82 serge:31388 pD9E8AE20.dip.t-di:1130 ESTABLISHED
tcp 0 0 serge:34010 irc2.port80.se:6669 ESTABLISHED
tcp 0 0 serge:59206 skyline.ludd.luth.:6668 ESTABLISHED
tcp 0 0 serge:36307 irc1.port80.se:ircd ESTABLISHED
tcp 0 0 serge:48812 online1.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:39745 wineasy2.se.quaken:6668 ESTABLISHED
tcp 0 0 serge:41798 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:60089 server133.multipla:ircd ESTABLISHED
tcp 0 0 serge:4000 muedslg-wan044.ci:60773 ESTABLISHED
tcp 0 0 serge:52843 irc2.port80.se:ircd ESTABLISHED
tcp 0 0 serge:auth irc2.port80.se:3717 TIME_WAIT
tcp 0 0 serge:41600 skyline.ludd.luth.:ircd ESTABLISHED
tcp 0 0 serge:53792 213.48.150.3:6669 ESTABLISHED
tcp 0 0 serge:48912 online1.no.quakene:ircd ESTABLISHED
tcp 0 0 serge:33021 irc1.port80.se:ircd ESTABLISHED
udp 0 0 serge:45964 ns1.tux-service.:domain ESTABLISHED
udp 0 0 serge:51619 ns1.tux-service.:domain ESTABLISHED
udp 0 0 serge:51620 ns1.tux-service.:domain ESTABLISHED
udp 0 0 serge:51621 ns1.tux-service.:domain ESTABLISHED
udp 0 0 serge:51623 ns1.tux-service.:domain ESTABLISHED
udp 0 0 serge:51624 ns1.tux-service.:domain ESTABLISHED
mfg
mc
-
Joe User
- Project Manager
- Posts: 11183
- Joined: 2003-02-27 01:00
- Location: Hamburg
Re: traffic
Schalte den IRCd für ein paar Tage ab...
PayPal.Me/JoeUser ● FreeBSD Remote Installation
Wings for Life ● Wings for Life World Run
„If there’s more than one possible outcome of a job or task, and one
of those outcomes will result in disaster or an undesirable consequence,
then somebody will do it that way.“ -- Edward Aloysius Murphy Jr.
Wings for Life ● Wings for Life World Run
„If there’s more than one possible outcome of a job or task, and one
of those outcomes will result in disaster or an undesirable consequence,
then somebody will do it that way.“ -- Edward Aloysius Murphy Jr.
-
mcdave2k1
- Posts: 31
- Joined: 2003-10-29 22:37
- Location: Monheim
Re: traffic
hab gar kein ircd drauf... das sind alles nur bouncer... ca. 190 stück
mfg
mc
mfg
mc
-
lambras
- Posts: 90
- Joined: 2002-05-29 16:35
- Location: Frankfurt am Main
Re: traffic
Auch die können gehörig traffic machen. Wenn ihr auch noch DCC tunnelt, dann umso mehr.
-
static
- Posts: 437
- Joined: 2002-10-27 19:56
- Location: Schweiz
Re: traffic
Hi,
ich hab zwar von IRC wenig Ahnung, aber ich würde einfach IAM installieren, dann siehst du sehr schnell woher der Traffic stammt.
.static
ich hab zwar von IRC wenig Ahnung, aber ich würde einfach IAM installieren, dann siehst du sehr schnell woher der Traffic stammt.
.static
-
kase
- Posts: 1031
- Joined: 2002-10-14 22:56
Re: traffic
Auch ein Blick in iptraf lohnt sich sicher, die Netzaktivitätenauflistung ist sehr gut.
-
alexander newald
- Posts: 1117
- Joined: 2002-09-27 00:54
- Location: Hannover
Re: traffic
Ansonsten kann ich auch noch mein Traffic Tool zur Messung des Traffics empfehlen.
-
smur
- Posts: 167
- Joined: 2003-05-26 16:00
- Location: Mannheim
Re: traffic
Oh, ein Hobby Provider.. um den schuldigen zu finden, miss den traffic auf per-user Basis.mcdave2k1 wrote:hab gar kein ircd drauf... das sind alles nur bouncer... ca. 190 stück
-
mcdave2k1
- Posts: 31
- Joined: 2003-10-29 22:37
- Location: Monheim
Re: traffic
hm wie kann ich das den machen ? also pro user den traffic messen?
mfg
mc
mfg
mc
-
smur
- Posts: 167
- Joined: 2003-05-26 16:00
- Location: Mannheim
Re: traffic
Mit iptables und dem owner-Modul.
-
mcdave2k1
- Posts: 31
- Joined: 2003-10-29 22:37
- Location: Monheim
Re: traffic
hm owner modul sagt mir nix... gibs dazu irgendwas an info´s oder so?
bzw. wo installieren ? mit in den kerneln kompilieren ?
mfg
mc
bzw. wo installieren ? mit in den kerneln kompilieren ?
mfg
mc
-
smur
- Posts: 167
- Joined: 2003-05-26 16:00
- Location: Mannheim
Re: traffic
Alles voll in der Doku zu den Kernelquellen. Außerdem existiertmcdave2k1 wrote:hm owner modul sagt mir nix... gibs dazu irgendwas an info´s oder so?
Code: Select all
man iptables-
alexander newald
- Posts: 1117
- Joined: 2002-09-27 00:54
- Location: Hannover
Re: traffic
Geht aber nur für ausgehenden Traffic
-
smur
- Posts: 167
- Joined: 2003-05-26 16:00
- Location: Mannheim
Re: traffic
Standardmäßig ja. Glücklicherweise existiert seit einiger Zeit ein wirklich brauchbarer Kernelpatch ;)Alexander Newald wrote:Geht aber nur für ausgehenden Traffic
Gruß,
Nico