> It's a little unrelated to Debian but I'm looking for a package that > will allow me to sniff http traffic and give me some traffic > anayalsis. > > Essentially I've got a Squid proxy server dishing out cache web > traffic and a big difference in traffic from the bill from our ISP to > our Squid logs. <snap> > I did a little google searching but to no avail. I'm trying out > Ethereal which is great but is perhaps too much. I just want to find > out where the Port 80 traffic is going and get some graphs. Any > ideas?
I was going to suggest ethereal but if you don't want that (you are aware that it can filter the traffic collected don't you? (eg only collect port 80 traffic...). There are also others, the only one I can recall is tcpdump (but it's a bit more advanced/difficult IIRC). Other than that I am out of suggestions except for (although it's not a usual way of doing thigs) you could setup squid to do transparent proxing (but not actually cache anything, just use it for stats gathering) and use existing squid analysis tools to grep the squid logs... I'm no expert in traffic analysis so the above might need some verification... -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
