tcpdump mailing list archives
Re: bandwidth by user or process id
From: Patrick Kurz <kurzpatrick () ymail com>
Date: Tue, 5 Oct 2010 02:14:19 -0700 (PDT)
________________________________ From: Rob Hasselbaum <rob () hasselbaum net> To: tcpdump-workers () lists tcpdump org Sent: Mon, October 4, 2010 10:35:02 PM Subject: Re: [tcpdump-workers] bandwidth by user or process id
For typical point-to-point IP traffic, the combination of local address, local port, remote address, remote port, and transport protocol (TCP or UDP) is the closest thing you have to a unique key.
Are you saying, that this method cannot distinguish two different users/PIDs
downloading huge data from the same remote address to the same local address?
This was the key point of my original question, and if your method relies on
addresses and ports only, I have to search for a different solution.
Thanks
Patrick
-
This is the tcpdump-workers list.
Visit https://cod.sandelman.ca/ to unsubscribe.
Current thread:
- bandwidth by user or process id Patrick Kurz (Oct 04)
- Re: bandwidth by user or process id Rob Hasselbaum (Oct 04)
- Re: bandwidth by user or process id Patrick Kurz (Oct 04)
- Re: bandwidth by user or process id Rob Hasselbaum (Oct 04)
- Re: bandwidth by user or process id Rob Hasselbaum (Oct 04)
- Re: bandwidth by user or process id Patrick Kurz (Oct 05)
- Re: bandwidth by user or process id Gert Doering (Oct 05)
- Re: bandwidth by user or process id Rob Hasselbaum (Oct 05)
- Re: bandwidth by user or process id Patrick Kurz (Oct 06)
- Re: bandwidth by user or process id Gert Doering (Oct 06)
- Re: bandwidth by user or process id Patrick Kurz (Oct 04)
- Re: bandwidth by user or process id Rob Hasselbaum (Oct 04)
- Re: bandwidth by user or process id Gerald Combs (Oct 05)
- Re: bandwidth by user or process id Patrick Kurz (Oct 06)