The ipaudit package records and displays network activity. It is useful for identifying heavy bandwidth users, intrusive telnet sessions, denial of service attacks, and scans. It includes ipaudit, which stores counts of bytes and packets for every combination of host/port pairs and protocol. The utilities total and ipstrings can be used to investigate network traffic records from the command line. ipaudit-web can collect network traffic statistics and generate Web reports.
|Operating Systems||POSIX BSD Linux Other Solaris|
|Implementation||C Perl Unix Shell|
Release Notes: Ability to monitor multiple network interfaces simultaneously, an optional configuration file, improved definition of local network addresses using multiple IP ranges, and a fix for an occasional crash when the program terminated.
Release Notes: New shell and Perl scripts to generate Webified reports.
Release Notes: You can record ethernet addresses (-e), sort output, prevent memory overflow due to packet storms (-L), and handle PPP correctly, and it includes two new utilities (ipstrings, total) and bugfixes.
Release Notes: Bug fixes.
Release Notes: Time fields added to output, minor bug fix.