Suggestions for Bandwidth Profiling?

Greetings,

Between me and a few of my co-workers/customers, we have several Linodes, and in the past month, one of my co-workers has seen some rather abusive use of some services on one of his Linodes.

As I am a co-admin (with root access) to his Linode, I can pretty much install whatever software/configure whatever I need to for him (or myself) on this particular node. I am wondering, with that in mind, if anybody might have some suggestions for software that could help us figure out where all of his bandwidth is going?

In shorter form, we'd need a piece of software that can tell us what TCP/UDP ports are seeing the most utilization (iptraf has proven totally unhelpful in this regard). Graph-based formats of data would be a plus. Also, knowing what IP's use the most bandwidth would be useful. I have been trying to curtail this activity for almost a month now (and it left him with less than 12GB of his total 1200GB of pool bandwidth available at the end of the previous billing period), and nothing really seems to have a lasting effect on this problem.

I thank you in-advance for any advice you may be able to provide. ;-)

Cheers!

–--

-- Quinn Ebert

-- www.QuinnEbert.net


-- PS: Yes, I am the Quinn Ebert that's responsible for the

-- FreePBXv3+FreeSwitch Stackscript at:

-- http://www.linode.com/stackscripts/view … riptID=514">http://www.linode.com/stackscripts/view/?StackScriptID=514

----

8 Replies

Can't you beat this information out of your co-worker in real life? That sounds superior to any technical solution to me.

Seriously though, if someone has root on your machines and doesn't volunteer this sort of information when asked you have a bigger problem than not knowing how to set up traffic monitoring.

@Ævar Arnfjörð Bjarmason:

Can't you beat this information out of your co-worker in real life? That sounds superior to any technical solution to me.

Seriously though, if someone has root on your machines and doesn't volunteer this sort of information when asked you have a bigger problem than not knowing how to set up traffic monitoring.

Actually, my co-worker knows what he's doing – When I say a co-worker, perhaps I should have said "business partner." The individual in-question is very intelligent, and has not been withholding any information from me. This problem, given its nature, falls under my purview, and I am asking for help here, as I have exhausted my knowledge on the topic.

Thanks, though, for your colorful comments! :x

Cheers!

--Quinn

ntop will probably show you what you want.

It can display how much bandwidth various hosts and protocols are using up.

@theboywho:

ntop will probably show you what you want.

It can display how much bandwidth various hosts and protocols are using up.

TheBoyWho,

Thanks! I'll give it a shot, and let you know how it pans out!

Thanks again–your input is greatly appreciated! ;-)

--Quinn

TheBoyWho,

Thanks again for this excellent suggestion – I believe this is just what I've been looking for!

Again, your help here has been incredibly appreciated!

Thanks again!

--Quinn

TheBoyWho,

I know this seems verbose at this point, but just wanted to thank you again for suggesting NTop (no, I'd not heard of it until you suggested it, I'm afraid).

This has done wonders for telling me where all of this traffic is going – it happens to be that one of our clients' custom software applications is a main source of our problems, and without NTop I probably would have spent several more months or weeks trying to discern this. Now I can actually contact him with some reasonable proof of the undesired activity, in order to help him rectify the situation.

One more time, thanks again for suggesting this -- It was just what the proverbial doctor ordered. ;-)

Thanks again!

--Quinn

After 3 thankyou posts - get a room already.

vonskippy,

What can I say – It was a great solution to a long, overly drawn-out problem. :D

Cheers!

--Quinn

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Community Code of Conduct