[WBEL-users] Monitor users
syv <centos@911networks.com>
syv <centos@911networks.com>
Thu, 1 Jul 2004 09:41:02 -0700
Hi,
I have a WBox acting as firewall. I'd like to track the outgoing
traffic [web and others] with the IP address source [192.168.x.x]
and the destination IP/port.
I have have been using tcpdump for this, but I can't get it
working from the a cron job.
1 0 * * * /usr/sbin/tcpdump -a -p -i eth0 tcp and dst port 80 > /log/port80_`date '+%F-%A'`.tcpdump
57 23 * * * /bin/ps auxw | grep nscd | grep -v grep | awk '{print $2}' | xargs kill
58 23 * * * /bin/cp /log/port80_`date '+%F-%A'`.tcpdump /log/backup/
59 23 * * * /bin/tar -czf /log/backup/p80_`date '+%F-%A'`.tar /log/backup/port80_`date '+%F-%A'`.tcpdump
Any suggestion would be appreciated
--
Thanks
whitebox@911networks.com