Re: log outbound port 80 connections

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 


On Feb 5, 2008, at 12:00 PM, Ray Van Dolson wrote:


On Tue, Feb 05, 2008 at 11:56:48AM -0500, Tony Schreiner wrote:

Is there a way to log outbound connections to a specific port (80)?
CentOS 4.6.

iptables?



iptables -A OUTPUT -p tcp --dport 80 -j LOG --log-prefix "WWW "

You might want to tack --syn on there as well to only log the packet
initiating the connection instead of packets for the whole stream.

Ray


Thanks for that.
Followup. Can I associate anything in the log record with the process. I see the SPT but, the connection appears to be short, I can't find the port in netstat or lsof (not sure if those apply to source ports). 


Tony
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux