[Snort-users] Off topic, protocol analysis...

James Riden j.riden at ...11179...
Mon Nov 1 11:13:23 EST 2004

Jason Humes <jhumes at ...11232...> writes:

> Hi
> I'm looking for something that can watch all the traffic and classify what
> it is by port, and possibly by deeper inspection.  I'd like something that
> can do 'Top 10 Protocols', 'Top 10 Services', 'Top 10 Talkers'...that sort
> of thing and I would love if it was linux based...anyone have any
> ideas...thanks.

I think that 'rate' and 'ntop' do this sort of thing. 

James Riden / j.riden at ...11179... / Systems Security Engineer
Information Technology Services, Massey University, NZ.
GPG public key available at: http://www.massey.ac.nz/~jriden/

More information about the Snort-users mailing list