The FreeBSD Diary

The FreeBSD Diary (TM)

Providing practical examples since 1998

If you buy from Amazon USA, please support us by using this link.
[ HOME | TOPICS | INDEX | WEB RESOURCES | BOOKS | CONTRIBUTE | SEARCH | FEEDBACK | FAQ | FORUMS ]
FreeBSD Support
 New Topic  |  Go to Top  |  Go to Topic  |  Search  |  Log In   Newer Topic  |  Older Topic 
 Active Connections
Author: Isaac 
Date:   13-12-02 18:20

I posted a topic regarding natd and the blocking of certain sites to my home network (my roommate is an internet gambling addict). Now my problem has branched out into another question. After figuring out how to set up firewall rules via ipfw I can successfully block incoming traffic to any ip address port combination. What Iím trying to figure out now is how to determine what ip and port this Internet gambling program runs off of. Iíve installed the client on my machine and open it (in ďfunĒ mode). Iíve tried running commands such as netstat to figure out what ip and port this program is using to connect, but to no avail. How can I figure something like this out? Sorry if this is a totally beginner question. I tend to learn on a need to know basis at this point, and all I ask is to be pointed in the right direction. Thanks, Isaac

Reply To This Message
 
 Re: Active Connections
Author: .daniel.schrock 
Date:   13-12-02 19:06

try ipfstat -t or ipnat -l

Reply To This Message
 
 Re: Active Connections
Author: Isaac 
Date:   13-12-02 19:58

When I try those commands I get the following errors:
# ipfstat -t
open: Device not configured
# ipnat -l
/dev/ipnat: open: Device not configured
#

Reply To This Message
 
 Re: Active Connections
Author: Isaac 
Date:   13-12-02 20:03

I'll read up on those commands though :)

Reply To This Message
 
 Re: Active Connections
Author: fianna 
Date:   13-12-02 20:04

i got the same errors what does that mean dan...
netstat -p tcp might work or log everything, coming in and close everything but that program.

Reply To This Message
 
 Re: Active Connections
Author: .daniel.schrock 
Date:   13-12-02 20:08

my bad... i misread the original post and though you were using ipfilter/ipnat...

i don't think ipfw/natd has this functionality...
i would say use tcpdump, though be sur to read the man page for it and try to filter out what you don't need...
you could also check out trafshow in /ust/ports/net

Reply To This Message
 Forum List  |  Threaded View   Newer Topic  |  Older Topic 


 Forum List  |  Need a Login? Register Here 
 User Login
 User Name:
 Password:
 Remember my login:
   
 Forgot Your Password?
Enter your email address or user name below and a new password will be sent to the email address associated with your profile.
How to get the most out of the forum

phorum.org