Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
Vadim Timoshenko2019-04-10 11:33:42
ubuntu
Vadim Timoshenko, 2019-04-10 11:33:42

How to enable outgoing traffic logs in ubuntu?

There is VDS on Ubuntu. My server is knocking on other decent servers. Somewhere sits a bastard. I want to find him. Where to look for logs and if there are none, how to enable them?
What is the easiest way to monitor the source of an outgoing connection?
I set rules for iptables. But I'm afraid that GET requests are being made through ports 80 and 443?

-P INPUT DROP
-P FORWARD DROP
-P OUTPUT DROP
-N f2b-sshd
-A INPUT -p tcp -m tcp --dport 22 -m conntrack --ctstate ESTABLISHED -j ACCEPT
-A INPUT -p tcp -m multiport --dports 80,443 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --sport 22 -m conntrack --ctstate NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m multiport --sports 80,443 -m conntrack --ctstate ESTABLISHED -j ACCEPT

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
R
Ronald McDonald, 2019-04-10
@PbI6A_KuT

Run tcpdump, then view the logs in Wireshark.

Similar questions
A
Andrey Fedorov2015-09-02 23:57:03
How to configure htaccess to remove get parameters from only part of the site pages? 1Reply
D
DarkByte20152017-02-05 18:32:20
Ending of the word? 0Reply
E
Eugene A2015-02-05 21:03:20
Which Mail server (With normal ui) to choose on ubuntu server 14? 2Reply
A
Arthur2015-02-05 21:55:35
Upgrading to Windows 10? 2Reply
A
akakiy_akakievich2015-02-06 13:01:03
How to restore grub after Ubuntu upgrade? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question