Is there a way to setup w2k3 to monitor NIC traffic?



ILiya
07-10-2005, 02:19 AM
I'd like to see all traffic in and out on a specified interface and be able
to tell which application initiated a given flow. Is there a way to setup
sort of a network trap to do that on a permanent basis?

Thanks

Arkady Frenkel
07-10-2005, 02:19 AM
"netstat -o" show you PID of process which established connection and
traffic you can see with many sniffers like netmon from MSFT or windump,
ethereal and many others
Arkady

"ILiya" <iliya00@yandex.ru> wrote in message
news:eRht1OpeFHA.3184@TK2MSFTNGP15.phx.gbl...
> I'd like to see all traffic in and out on a specified interface and be
> able
> to tell which application initiated a given flow. Is there a way to setup
> sort of a network trap to do that on a permanent basis?
>
> Thanks
>
>
>
>

djcaseley
07-10-2005, 02:19 AM
I use an app called ActivePorts on my machine to see the applications
that have active TCP connections, on what port and to what machine.

It sounds as though you're trying to record all of the throughput
through your NIC. If this is indeed a server, I hope you've got a jolly
big hard drive! There are programs out there that can watch, and I
expect, log, traffic over the NIC, but I can't think of anything
offhand. You could try http://www.sysinternals.com though.


--
djcaseley
------------------------------------------------------------------------
djcaseley's Profile: http://www.msusenet.com/member.php?userid=2738
View this thread: http://www.msusenet.com/t-1870566189


Is there a way to setup w2k3 to monitor NIC traffic?