Path: utzoo!utgpu!news-server.csri.toronto.edu!bonnie.concordia.ca!s3!vaillan From: vaillan@ireq.hydro.qc.ca (Clement Vaillancourt) Newsgroups: comp.protocols.tcp-ip Subject: Re: Subject: traffic monitoring by net snooping Message-ID: <5455@s3.ireq.hydro.qc.ca> Date: 14 Feb 91 13:32:16 GMT References: Sender: root@s3.ireq.hydro.qc.ca Organization: Hydro-Quebec Lines: 29 In article chris@endgame.gsfc.nasa.gov (Chris Shenton) writes: >I recently saw this clever program from Silicon Graphics which watches >traffic (of a specified protocol, I think) on the ether, and draws lines >connecting machine names -- kind of like a dynamic traffic mapper. They >called it netsnoop or netlook or some such... > >I'd like to try writing something like this but need pointers to the TCP/IP >calls. I assume I'd be interested in the packet level stuff, just reading >the TO and FROM addresses from the ip headers... Any pointers? I have the real NetVisualyzer package (including netsnoop, netlook, analyzer) running on an SGI workstation. It is a great package to watch networks in action. My SGI machine is the only SGI on this research campus watching the traffic of about 300 Suns... I had to buy the SGI workstation to be able to run this great package. I never found something as good for the money running on a Sun. I just don't understand why SGI don't port this package to Sun and sell it with a good profit? Again, a very good package to see and debug networks, no statistics or snmp in version 1.0 but I heard it is comming. Clem. -- Clement Vaillancourt, Analyste, | Institut de Recherche d'Hydro-Quebec Responsable du Reseau Ethernet | 1800 Montee Ste-Julie, Varennes (Analyst, Network Manager) | P. Quebec, Canada, J3X 1S1 vaillan@ireq.hydro.qc.ca |Tel:+1 514 652 8238 Fax:+1 514 652 8309