Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: How to find a process

From: "Justin Lintz" <jlintz () gmail com>
Date: Thu, 14 Jun 2007 09:20:40 -0400
"netstat -lp" will show all ports in the listening state and the PID
of the process listening on that port.  Read the man page for netstat
and you will see you can do alot more, and just view UDP or TCP
connections.

On 6/13/07, Francisco Rodrigo Cortinas Maseda
<francisco.cortinas () jazztel com> wrote:

Hello,

my name is Fran, im a network and system administrator, and i have a
strange case, but sure somenone have had the same problem before me.

My problem is that we have some strange traffic on the firewalls, going
from a server on a DMZ to public client pools.

10:09:10.511978 00:0e:0c:71:7f:cd > 10:00:00:00:26:01, ethertype IPv4
(0x0800), length 61: IP XXXXX.44267 > XXXXXX.3072: UDP, length 19

The problem is: with netstat i only see the ports daemons are listening
on. I want to know the process that is using the outgoing port, that is,
44267.

Is there a way to know this?

Thanks in advance.
Regards.





--
- Justin Lintz
Previous By Date Next
Previous By Thread Next

Current thread: