nikki-2009
2009-Jun-14 10:48 UTC
[Xen-users] Guest OS proccess'' network activity monitoring
Hi, all. I''m looking for a way to monitor network activities of processes in Guest OS. I want to get a list of Guest OS proccesses that open TCP connections to other machines (like "lsof" command). Any advice is welcome. Thanks. -- View this message in context: http://www.nabble.com/Guest-OS-proccess%27-network-activity-monitoring-tp24018656p24018656.html Sent from the Xen - User mailing list archive at Nabble.com. _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Fajar A. Nugraha
2009-Jun-14 12:19 UTC
Re: [Xen-users] Guest OS proccess'' network activity monitoring
On Sun, Jun 14, 2009 at 5:48 PM, nikki-2009<n.kawaguti@gmail.com> wrote:> > Hi, all. > > I''m looking for a way to monitor network activities of processes in Guest > OS. > I want to get a list of Guest OS proccesses that open TCP connections to > other machines (like "lsof" command).If you''re thinking about doing on from dom0, that''s not possible. You need something that runs on domU for that, possibly by using snmpd and extending it to run "netstat -anp --tcp". Other host (including dom0) can then collect the information using snmp. -- Fajar _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Frank Pikelner
2009-Jun-15 15:18 UTC
RE: [Xen-users] Guest OS proccess'' network activity monitoring
Have a look at Versiera, it provides what you are looking for including, user IDs, inbound/outbound communications, IPv4, IPV6, etc. There are many more capabilities. Versiera is not open-source, but the Internet self-manage service is free. -----Original Message----- From: xen-users-bounces@lists.xensource.com on behalf of nikki-2009 Sent: Sun 6/14/2009 1:18 AM To: xen-users@lists.xensource.com Subject: [Xen-users] Guest OS proccess'' network activity monitoring Hi, all. I''m looking for a way to monitor network activities of processes in Guest OS. I want to get a list of Guest OS proccesses that open TCP connections to other machines (like "lsof" command). Any advice is welcome. Thanks. -- View this message in context: http://www.nabble.com/Guest-OS-proccess%27-network-activity-monitoring-tp24018656p24018656.html Sent from the Xen - User mailing list archive at Nabble.com. _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
nikki-2009
2009-Jun-27 15:34 UTC
Re: [Xen-users] Guest OS proccess'' network activity monitoring
For your informatin, I finally found that XenAccess library satisfies my demands. The tool provides monitroing API to guest os memory. With xenaccess, it is easy to obtain process list from guest os. Moreover, the tool can be combined with other forensic tools such as volatility framework for richer analysis. nikki-2009 wrote:> > Hi, all. > > I''m looking for a way to monitor network activities of processes in Guest > OS. > I want to get a list of Guest OS proccesses that open TCP connections to > other machines (like "lsof" command). > > Any advice is welcome. > > Thanks. > > >-- View this message in context: http://www.nabble.com/Guest-OS-proccess%27-network-activity-monitoring-tp24018656p24234084.html Sent from the Xen - User mailing list archive at Nabble.com. _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users