thinkhy
Reputation: 933
How to write a Shell script to monitor other servers' TCP connections
I'm seeking help to write a Shell script on Linux to monitor other servers' TCP connections. Every hour, this script will output the name list of servers whose TCP connection numbers exceed 100 into a text file. Any thoughts on this? Thanks.
Upvotes: 0
Views: 1286
Answers (2)
Brian
Reputation: 158
Dump package for specific network interface
sudo tcpdump -i eth0 -n -q > /tmp/ccc 2>&1
Filter it by your favorite tool (run it each hour by cron)
cat /tmp/ccc|sed -e 's/.IP\ //g' -e 's/\ >.//g'|sort|uniq
It's a very rough concept. In practical still need to concern many think like file retention and clean up the /tmp/ccc every hour
Upvotes: 0
Alfe
Reputation: 59436
Each hour:
(can be done by a cron job)
Log in on each server and:
(can be done by ssh with pre-installed keys)
list all TCP connections
(can be done by netstat or cat /proc/net/tcp or similar)
count them
(can be done by wc)
E. g.:
for host in $(cat hostnames)
do
n=$(ssh "$host" 'cat /proc/net/tcp | wc -l')
[ "$n" -gt 100 ] && echo "$host: $n connections"
done >> logfile.txt
Upvotes: 1
Related Questions
- automated retrieval of the external ip address of all of my current connections
- Shell script to find out if a port is being listened to using netstat?
- TCP/Socket server in bash
- How can I automate sending and receiving TCP traffic using netcat in Bash?
- Bash: monitoring TCP socket activity
- batch network monitoring per process/socket (Linux, shell)
- shell script with synchronization
- How can I listen for and report server (SSH) connections via a Python script?
- Best way to monitor for a server on a TCP port
- Bash command (netstat etc) to show overview of packet transfer?