lsconntrack

command module
v0.3.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 4, 2018 License: MIT Imports: 10 Imported by: 0

README

lsconntrack

Build Status Go Report Card

lsconntrack prints host flows (aggregated connection flows to the same source or destination ports) tracked by Linux netfilter conntrack and enables you to simply grasp the network relationship between localhost and other hosts.

Features

  • Distinction of active opens and passive opens
  • Print also packets and bytes of each flows (the absolute values are meaningless)
  • Go portability
  • Filter by ports (--active-ports and --passive-ports)
  • stdin support (combination with conntrack-tools)
  • JSON support
  • TCP support only

Environment

  • Linux only
    • Tested on CentOS5, Debian7, Debian8

Setup

How to use

$ lsconntrack -n
Local Address:Port	 <--> 	Peer Address:Port 		Inpkts 	Inbytes     Outpkts Outbytes
localhost:many       -->    10.0.1.10:3306		    5521792 123258667	5423865 282041045
localhost:many       -->    10.0.1.11:3306		    58800   3062451	    58813   3061627
localhost:many       -->    10.0.1.20:8080		    123     169638	    62      3580
localhost:80         <--    10.0.2.10:80			23	    6416	    25	    25460
localhost:80         <--    10.0.2.11:80			38	    8574	    34	    32752

# Prints active open connections from localhost to destination hosts.
$ lsconntrack --active
Local Address:Port	 <--> 	Peer Address:Port 		Inpkts 	Inbytes     Outpkts Outbytes
localhost:many       -->    10.0.1.10:3306		    5521792 123258667	5423865 282041045
localhost:many       -->    10.0.1.11:3306		    58800   3062451	    58813   3061627
localhost:many       -->    10.0.1.20:8080		    123     169638	    62      3580
...

# Prints passive open connections from destination hosts to localhost.
$ lsconntrack --passive
Local Address:Port	 <--> 	Peer Address:Port 		Inpkts 	Inbytes     Outpkts Outbytes
localhost:80         <--    10.0.2.10:many			23	    6416	    25	    25460
localhost:80         <--    10.0.2.11:many			38	    8574	    34	    32752
...
filter by port
$ lsconntrack --active --aport 3306 --aport 11211
via stdin
$ cat /proc/net/nf_conntrack | lsconntrack --stdin
JSON format
$ lsconntrack --json | jq -r -M '.'
[
  {
    "direction": "active",
    "local": {
      "Addr": "localhost",
      "Port": "many"
    },
    "peer": {
      "addr": "10.0.100.1",
      "port": "3306"
    },
    "stat": {
      "total_inbound_packets": 1491,
      "total_inbound_bytes": 1480239,
      "total_outbound_packets": 1537,
      "total_outbound_bytes": 520613
    }
  },
  {
    "direction": "passive",
    "local": {
      "addr": "localhost",
      "port": "80"
    },
    "peer": {
      "addr": "10.0.200.1",
      "port": "many"
    },
    "stat": {
      "total_inbound_packets": 1491,
      "total_inbound_bytes": 1480239,
      "total_outbound_packets": 1537,
      "total_outbound_bytes": 520613
    }
  },
  ...
]

License

MIT

Author

yuuki

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.