Limit/Track outbound traffic

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP











up vote
1
down vote

favorite












In my server there are untrusted users. There is a risk that one of the users may perform excessive http/https requests to another remote server and I may have problems if that happens.



I have heard tcpdump is the most powerful tool for network analysis/tracking, but I'm not aware of any way to be able to track which users are sending http/https requests and what are their sending rate.



If something happens, I need to identify the culprit.



In your opinion, which is the best tool/software tools for the purpose?










share|improve this question

























    up vote
    1
    down vote

    favorite












    In my server there are untrusted users. There is a risk that one of the users may perform excessive http/https requests to another remote server and I may have problems if that happens.



    I have heard tcpdump is the most powerful tool for network analysis/tracking, but I'm not aware of any way to be able to track which users are sending http/https requests and what are their sending rate.



    If something happens, I need to identify the culprit.



    In your opinion, which is the best tool/software tools for the purpose?










    share|improve this question























      up vote
      1
      down vote

      favorite









      up vote
      1
      down vote

      favorite











      In my server there are untrusted users. There is a risk that one of the users may perform excessive http/https requests to another remote server and I may have problems if that happens.



      I have heard tcpdump is the most powerful tool for network analysis/tracking, but I'm not aware of any way to be able to track which users are sending http/https requests and what are their sending rate.



      If something happens, I need to identify the culprit.



      In your opinion, which is the best tool/software tools for the purpose?










      share|improve this question













      In my server there are untrusted users. There is a risk that one of the users may perform excessive http/https requests to another remote server and I may have problems if that happens.



      I have heard tcpdump is the most powerful tool for network analysis/tracking, but I'm not aware of any way to be able to track which users are sending http/https requests and what are their sending rate.



      If something happens, I need to identify the culprit.



      In your opinion, which is the best tool/software tools for the purpose?







      linux users






      share|improve this question













      share|improve this question











      share|improve this question




      share|improve this question










      asked Oct 3 '17 at 5:51









      aye

      185




      185




















          1 Answer
          1






          active

          oldest

          votes

















          up vote
          0
          down vote













          Tcpdump was created for debugging network issues, not for persistent traffic monitoring.



          The best tool for analyze and control user's traffic is proxy-server such as Squid:




          Squid is a fully-featured HTTP/1.0 proxy which is almost (but not
          quite - we're getting there!) a fully-featured HTTP/1.1 proxy. Squid
          offers a rich access control, authorization and logging environment to
          develop web proxy and content serving applications. Squid offers a
          rich set of traffic optimization options, most of which are enabled by
          default for simpler installation and high performance.




          You can use Squid with LightSquid - this is light log analizer for Squid.






          share|improve this answer




















            Your Answer







            StackExchange.ready(function()
            var channelOptions =
            tags: "".split(" "),
            id: "106"
            ;
            initTagRenderer("".split(" "), "".split(" "), channelOptions);

            StackExchange.using("externalEditor", function()
            // Have to fire editor after snippets, if snippets enabled
            if (StackExchange.settings.snippets.snippetsEnabled)
            StackExchange.using("snippets", function()
            createEditor();
            );

            else
            createEditor();

            );

            function createEditor()
            StackExchange.prepareEditor(
            heartbeatType: 'answer',
            convertImagesToLinks: false,
            noModals: false,
            showLowRepImageUploadWarning: true,
            reputationToPostImages: null,
            bindNavPrevention: true,
            postfix: "",
            onDemand: true,
            discardSelector: ".discard-answer"
            ,immediatelyShowMarkdownHelp:true
            );



            );













             

            draft saved


            draft discarded


















            StackExchange.ready(
            function ()
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f395753%2flimit-track-outbound-traffic%23new-answer', 'question_page');

            );

            Post as a guest






























            1 Answer
            1






            active

            oldest

            votes








            1 Answer
            1






            active

            oldest

            votes









            active

            oldest

            votes






            active

            oldest

            votes








            up vote
            0
            down vote













            Tcpdump was created for debugging network issues, not for persistent traffic monitoring.



            The best tool for analyze and control user's traffic is proxy-server such as Squid:




            Squid is a fully-featured HTTP/1.0 proxy which is almost (but not
            quite - we're getting there!) a fully-featured HTTP/1.1 proxy. Squid
            offers a rich access control, authorization and logging environment to
            develop web proxy and content serving applications. Squid offers a
            rich set of traffic optimization options, most of which are enabled by
            default for simpler installation and high performance.




            You can use Squid with LightSquid - this is light log analizer for Squid.






            share|improve this answer
























              up vote
              0
              down vote













              Tcpdump was created for debugging network issues, not for persistent traffic monitoring.



              The best tool for analyze and control user's traffic is proxy-server such as Squid:




              Squid is a fully-featured HTTP/1.0 proxy which is almost (but not
              quite - we're getting there!) a fully-featured HTTP/1.1 proxy. Squid
              offers a rich access control, authorization and logging environment to
              develop web proxy and content serving applications. Squid offers a
              rich set of traffic optimization options, most of which are enabled by
              default for simpler installation and high performance.




              You can use Squid with LightSquid - this is light log analizer for Squid.






              share|improve this answer






















                up vote
                0
                down vote










                up vote
                0
                down vote









                Tcpdump was created for debugging network issues, not for persistent traffic monitoring.



                The best tool for analyze and control user's traffic is proxy-server such as Squid:




                Squid is a fully-featured HTTP/1.0 proxy which is almost (but not
                quite - we're getting there!) a fully-featured HTTP/1.1 proxy. Squid
                offers a rich access control, authorization and logging environment to
                develop web proxy and content serving applications. Squid offers a
                rich set of traffic optimization options, most of which are enabled by
                default for simpler installation and high performance.




                You can use Squid with LightSquid - this is light log analizer for Squid.






                share|improve this answer












                Tcpdump was created for debugging network issues, not for persistent traffic monitoring.



                The best tool for analyze and control user's traffic is proxy-server such as Squid:




                Squid is a fully-featured HTTP/1.0 proxy which is almost (but not
                quite - we're getting there!) a fully-featured HTTP/1.1 proxy. Squid
                offers a rich access control, authorization and logging environment to
                develop web proxy and content serving applications. Squid offers a
                rich set of traffic optimization options, most of which are enabled by
                default for simpler installation and high performance.




                You can use Squid with LightSquid - this is light log analizer for Squid.







                share|improve this answer












                share|improve this answer



                share|improve this answer










                answered Oct 3 '17 at 6:12









                Egor Vasilyev

                1,792129




                1,792129



























                     

                    draft saved


                    draft discarded















































                     


                    draft saved


                    draft discarded














                    StackExchange.ready(
                    function ()
                    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f395753%2flimit-track-outbound-traffic%23new-answer', 'question_page');

                    );

                    Post as a guest













































































                    Popular posts from this blog

                    How to check contact read email or not when send email to Individual?

                    Displaying single band from multi-band raster using QGIS

                    How many registers does an x86_64 CPU actually have?