Here, we outline how to use Sys-snap, a diagnostic tool that logs up to 24 hours of resource usage data.
It is used to track down the causes of resource shortages, whether CPU or Memory-related, even when no one is looking.
The --network flag prints IP connections during the specified time range. The output will also show you how many times the connection or request was made.
Related Articles
Install Sys-snap
Parse Old Sys-snap Data
Gather Data
IMPORTANT: This solution will require root access. If this needs to be obtained, follow the guide on requesting root access.
-
SSH into the server as root
- Run the command
sys-snap.pl --network HH:MM HH:MM
to print IP connections from a particular time range
REPLACE: HH:MM with the start and end time to print.
TIP: Usingsys-snap.pl --network HH:MM HH:MM | head -##
will give you the beginning number of specified lines. You can also use| tail -##
to view the bottom lines for connections.
REPLACE: The ## with the number of lines you want to see printed on the screen.
EXAMPLE: The output below shows that IP address 12.34.56.78 had the most requests and should be investigated further.
~# sys-snap.pl --network 00:00 6:00 | head -10
127.0.0.1:
127.0.0.1 3254
xxx.xxx.xxx.xxx:
12.34.56.78 2481
78.56.34.12 670
12.43.56.87 526
43.12.87.56 361
87.65.43.21 202
87.43.65.21 169
Comments
0 comments
Article is closed for comments.