how to find out what is taking taking up my bandwith...
Posted on 2006-05-02
I have a question about bandwidth throttling and/or checking.
I'm not an expert in networking, so please bear with me.
I am running smoothwall for my firewall, and I have 2 windows boxes, one of which running VMWare that has Fedora Core 2 on it, and another FC4 box running my webserver, and another box running RedHat 9.0 for my mail server.
here's my dilemma. I have the plugin installed on my smoothwall box that shows me the current traffic on my WAN interface (Red).
For some reason, I always see traffic that is in the 130Kbit range. I am running a remote desktop session, and running hamachi VPN which I am aware that they will consume some bandwidth, but I'm not sure that 130Kbit is accurate for that.
For all I know, the numbers that smoothwall is reporting are not right. In any case, my question still stands, as I'm always curious about a good way to figure out where my bandwidth is being used.
I have used the iptraf utility on linux, and that shows me what connections are established with the box. (although, that 130Kbit didn't seem to come from any of my Linux boxes).
My current concern with the traffic is that someone has a rootkit on one of my boxes and piggy backing on my connection... ??
Any insight as to what's a good way to monitor bandwith usage without going into some deeply technical methods?