如何追蹤哪個進程正在產生網路流量？

Question 1

網路豬可以做的工作：

您可能希望使用該選項降低更新率-d。

自版本 0.8.5-2 起可用選項：

usage: nethogs [-V] [-h] [-b] [-d seconds] [-v mode] [-c count] [-t] [-p] [-s] [device [device [device ...]]]
        -V : prints version.
        -h : prints this help.
        -b : bughunt mode - implies tracemode.
        -d : delay for update refresh rate in seconds. default is 1.
        -v : view mode (0 = KB/s, 1 = total KB, 2 = total B, 3 = total MB). default is 0.
        -c : number of updates. default is 0 (unlimited).
        -t : tracemode.
        -p : sniff in promiscious mode (not recommended).
        -s : sort output by sent column.
   -a : monitor all devices, even loopback/stopped ones.
        device : device(s) to monitor. default is all interfaces up and running excluding loopback

Answer

網路豬可以做的工作：

您可能希望使用該選項降低更新率-d。

自版本 0.8.5-2 起可用選項：

usage: nethogs [-V] [-h] [-b] [-d seconds] [-v mode] [-c count] [-t] [-p] [-s] [device [device [device ...]]]
        -V : prints version.
        -h : prints this help.
        -b : bughunt mode - implies tracemode.
        -d : delay for update refresh rate in seconds. default is 1.
        -v : view mode (0 = KB/s, 1 = total KB, 2 = total B, 3 = total MB). default is 0.
        -c : number of updates. default is 0 (unlimited).
        -t : tracemode.
        -p : sniff in promiscious mode (not recommended).
        -s : sort output by sent column.
   -a : monitor all devices, even loopback/stopped ones.
        device : device(s) to monitor. default is all interfaces up and running excluding loopback

Question 2

當您觀察此流量時，請注意使用的連接埠和協定。然後檢查

netstat -tulpen

:第一列是協議，列中後面的數字Local Address是連接埠。最後一列顯示PID/Program name

Answer

當您觀察此流量時，請注意使用的連接埠和協定。然後檢查

netstat -tulpen

:第一列是協議，列中後面的數字Local Address是連接埠。最後一列顯示PID/Program name

如何追蹤哪個進程正在產生網路流量？

答案1

答案2

相關內容