tcptrack

Table of content

• Description
• Sampes
  • Track only after lunch
  • With dedecated port

Description

tcptrack is a tool to show the current data, there will be nothing stored or saved somewhere on your system. When you start tcptrack, you have to specify at least the interface to monitor with parameter -i <nic> It will show you:

• source(port)
• destination(port)
• state
• idle time(in seconds)
• speed
• overall speed

For example, a lunchcommand could look like this: tcptrack -i eth0 This would display you only the results for eth0 with no other filters applied.

Samples

Track only after lunch

$ tcptrack -i tun0 -d
 Client                Server                State        Idle A Speed
 10.84.42.9:52472      10.84.42.1:27         ESTABLISHED  2s     0 B/s
 10.84.42.9:46644      35.186.227.140:443    ESTABLISHED  32s    0 B/s
 10.84.42.9:50092      76.223.92.165:443     ESTABLISHED  11s    0 B/s
 10.84.42.9:35932      10.84.42.1:443        ESTABLISHED  9s     0 B/s
 10.84.42.9:39396      13.248.212.111:443    ESTABLISHED  49s    0 B/s


 TOTAL                                                           0 B/s
 Connections 1-5 of 5                         Unpaused  Unsorted

With dedecated port

$ tcptrack -i tun0 port 443
 Client                Server                State        Idle A Speed
 10.84.42.9:46644      35.186.227.140:443    ESTABLISHED  32s    0 B/s
 10.84.42.9:50092      76.223.92.165:443     ESTABLISHED  11s    0 B/s
 10.84.42.9:35932      10.84.42.1:443        ESTABLISHED  9s     0 B/s
 10.84.42.9:39396      13.248.212.111:443    ESTABLISHED  49s    0 B/s


 TOTAL                                                           0 B/s
 Connections 1-4 of 4                         Unpaused  Unsorted