There is a package called iplogger that comes with tcplogd, udplogd, and i
think icmplogd. All of these use a passive detection method which is what
you are talking about. They then log via syslog, i don't think they are
very configurable about which ports they log, so you may have to grep
thru.
-- ----- -- - -------- --------- ---- ------- ----- - - --- -------- Ben Collins <b.m.collins@larc.nasa.gov> Debian GNU/Linux UnixGroup Admin - Jordan Systems Inc. bcollins@debian.org ------ -- ----- - - ------- ------- -- The Choice of the GNU Generation
- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/