Detailed explanation of iptraf command in Linux
iptraf is an IP LAN monitoring tool developed based on ncurses. It can monitor network card traffic in real time and generate various network statistics, including TCP information, UDP statistics, ICMP and OSPF information, Ethernet load information, and node statistics. , IP checksum errors and other information.
Different parameters added after iptraf can play different roles. The following is the parameter command list of iptraf:
Note: Open the command line window and use iptraf to be told that you need to run it as an administrator. To switch from an ordinary user to an administrator user, you only need to execute the command sudo su.
As shown in the figure below, Figure 1 is the prompt message before switching to the administrator identity, and Figure 2 is after switching to the administrator identity.
First, enter iptraf and the interface shown below will appear:
Click the "Enter" key to continue and enter the following picture:
Click "Configure" menu in the total menu command to enter the following command menu:
This is very important. Proper configuration can make the statistical results more intuitive and informative.
1) Reverse DNS lookups: View the domain name corresponding to the connected IP. You can see the domain name results in the pkt captured dialog box of the IP traffic monitor. This is not very intuitive, and it will affect the packet capture performance a little bit when turned on.
2) TCP/UDP service names: Wherever there is a port, the port number will be replaced with the corresponding service name, which is very useful and intuitive.
3) Activity mode: Displays whether the traffic is in Kbits/s or Kbytes/s. It is recommended to change it to the latter one to be more consistent with habits.
4) Additional ports: Monitor additional ports that need to be monitored by port number. By default, only ports less than 1024 are monitored.
This default is fine unless you have special needs.
Click "Filter" to enter the interface as shown below:
Check the network traffic based on the connection. It is best to let it run for a while to see the structure of the total statistics. If a single connection takes up a lot of bandwidth, it is easy to see. At the same time, based on the IP, you can easily tell whether you are interacting with an internal network or an external network server. pkt captured can see the mac address.
Click "IP traffic monitor" to enter the selection interface shown below,
Click on the option to enter the view interface:
各ネットワーク カードのトラフィックを確認します。これは、内部ネットワークと外部ネットワークを含むネットワーク カードのトラフィックであることに注意してください。単一のマシンでは内部ネットワークと外部ネットワークを区別できません。
「一般インターフェイス統計」をクリックして、以下に示すインターフェイスに入ります:
プロトコルの統計によると、IP、TCP、UDP などのプロトコルは少数しかなく、あまり役に立たないようです。
「詳細なインターフェース統計」をクリックして、以下に示す選択インターフェースに入ります。
オプションをクリックしてビューインターフェイスに入ります:
1) パケット サイズ別: 送信パケットのサイズに基づく統計。
2) TCP/UDP ポート別: アプリケーション プロトコルに基づく統計は、詳細なインターフェイス統計よりも実用的です。
「統計の内訳」をクリックしてオプションのメニューを表示します:
MAC アドレスの統計に基づいています。
「LANステーションモニター」をクリックするとオプションメニューが表示されます:
The above is the detailed content of Detailed explanation of iptraf command in Linux. For more information, please follow other related articles on the PHP Chinese website!
Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store PublishingApr 25, 2025 am 09:50 AM
The Future of Linux Software: Will Flatpak and Snap Replace Native Desktop Apps?Apr 25, 2025 am 09:10 AMFor years, Linux software distribution relied on native formats like DEB and RPM, deeply ingrained in each distribution's ecosystem. However, Flatpak and Snap have emerged, promising a universal approach to application packaging. This article exami
What are the differences in how Linux and Windows handle device drivers?Apr 25, 2025 am 12:13 AMThe differences between Linux and Windows in handling device drivers are mainly reflected in the flexibility of driver management and the development environment. 1. Linux adopts a modular design, and the driver can be loaded and uninstalled dynamically. Developers need to have an in-depth understanding of the kernel mechanism. 2. Windows relies on the Microsoft ecosystem, and the driver needs to be developed through WDK and signed and certified. The development is relatively complex but ensures the stability and security of the system.
Compare and contrast the security models of Linux and Windows.Apr 24, 2025 am 12:03 AMThe security models of Linux and Windows each have their own advantages. Linux provides flexibility and customizability, enabling security through user permissions, file system permissions, and SELinux/AppArmor. Windows focuses on user-friendliness and relies on WindowsDefender, UAC, firewall and BitLocker to ensure security.
How does hardware compatibility differ between Linux and Windows?Apr 23, 2025 am 12:15 AMLinux and Windows differ in hardware compatibility: Windows has extensive driver support, and Linux depends on the community and vendors. To solve Linux compatibility problems, you can manually compile drivers, such as cloning RTL8188EU driver repository, compiling and installing; Windows users need to manage drivers to optimize performance.
What are the differences in virtualization support between Linux and Windows?Apr 22, 2025 pm 06:09 PMThe main differences between Linux and Windows in virtualization support are: 1) Linux provides KVM and Xen, with outstanding performance and flexibility, suitable for high customization environments; 2) Windows supports virtualization through Hyper-V, with a friendly interface, and is closely integrated with the Microsoft ecosystem, suitable for enterprises that rely on Microsoft software.
What are the main tasks of a Linux system administrator?Apr 19, 2025 am 12:23 AMThe main tasks of Linux system administrators include system monitoring and performance tuning, user management, software package management, security management and backup, troubleshooting and resolution, performance optimization and best practices. 1. Use top, htop and other tools to monitor system performance and tune it. 2. Manage user accounts and permissions through useradd commands and other commands. 3. Use apt and yum to manage software packages to ensure system updates and security. 4. Configure a firewall, monitor logs, and perform data backup to ensure system security. 5. Troubleshoot and resolve through log analysis and tool use. 6. Optimize kernel parameters and application configuration, and follow best practices to improve system performance and stability.
Is it hard to learn Linux?Apr 18, 2025 am 12:23 AMLearning Linux is not difficult. 1.Linux is an open source operating system based on Unix and is widely used in servers, embedded systems and personal computers. 2. Understanding file system and permission management is the key. The file system is hierarchical, and permissions include reading, writing and execution. 3. Package management systems such as apt and dnf make software management convenient. 4. Process management is implemented through ps and top commands. 5. Start learning from basic commands such as mkdir, cd, touch and nano, and then try advanced usage such as shell scripts and text processing. 6. Common errors such as permission problems can be solved through sudo and chmod. 7. Performance optimization suggestions include using htop to monitor resources, cleaning unnecessary files, and using sy
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
WebStorm Mac version
Useful JavaScript development tools
mPDF
mPDF is a PHP library that can generate PDF files from UTF-8 encoded HTML. The original author, Ian Back, wrote mPDF to output PDF files "on the fly" from his website and handle different languages. It is slower than original scripts like HTML2FPDF and produces larger files when using Unicode fonts, but supports CSS styles etc. and has a lot of enhancements. Supports almost all languages, including RTL (Arabic and Hebrew) and CJK (Chinese, Japanese and Korean). Supports nested block-level elements (such as P, DIV),
EditPlus Chinese cracked version
Small size, syntax highlighting, does not support code prompt function
DVWA
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is very vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, to help web developers better understand the process of securing web applications, and to help teachers/students teach/learn in a classroom environment Web application security. The goal of DVWA is to practice some of the most common web vulnerabilities through a simple and straightforward interface, with varying degrees of difficulty. Please note that this software
SublimeText3 English version
Recommended: Win version, supports code prompts!
