Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

what is eating up my centos VPS bandwidth

Posted on 2013-06-24
4
Medium Priority
?
787 Views
Last Modified: 2013-06-29
Hi experts
I have  a VPS that running CentOS 5.4 32 bit .. kloxo  control panel .. got only one site with very few traffic .
I was using that VPS for more than 2 years  with no problem
this month I got this message  from SolusVM Admin
 
"We are sending you this email because you have exceeded  more than 90% of your bandwidth allocation on the virtual server listed below:"


Based on kloxo my usage still very little ,, but SolusVM  has different say .

What I want :- a step by step solution to identify what could be eating my bandwidth and how to stop it .. ( I'm afraid my VPS could be hacked ... )
Many thanks
0
Comment
Question by:honestman31
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 25

Expert Comment

by:Zephyr ICT
ID: 39271324
Hi...

Do you have "iftop" installed, or can you install it on your VPS?

This will allow you to monitor what is eating your bandwidth

either as root, or a user with the necessary rights run:

iftop

Open in new window


Or with a filter:

iftop -f icmp

Open in new window


This way you get to see if some process or program is connecting somewhere that shouldn't.

Besides that, check all your logs for any irregularities ... Things that shouldn't be there.

- Check for failed logins in /var/log/messages
- Are there any new and unknown users created?
- When you use "top" are there any processes that you don't recognise?
- Check if any new programs were installed (rpm -Va).
0
 
LVL 10

Author Comment

by:honestman31
ID: 39271599
Hi spravtek,
iftop  not installed ,,
tried yum install iftop  but did not work  ,, ( how to install it )

attached is what I see when use top ..
top.jpg
0
 
LVL 10

Accepted Solution

by:
honestman31 earned 0 total points
ID: 39272050
just now i know the reason ,
my VPS got suspended and i got this message

"DNS Servers on your network are being used in DNS Amplification Attack's Worldwide."

So it is
DNS Amplification Attack's

Thanks for trying to help
0
 
LVL 10

Author Closing Comment

by:honestman31
ID: 39286391
was a DNS Amplification Attack's
0

Featured Post

Is Your Team Achieving Their Full Potential?

74% of employees feel they are not achieving their full potential. With Linux Academy, not only will you strengthen your team's core competencies but also their knowledge of of the newest IT topics.

With new material every week, we'll make sure that you stay ahead of the game.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is in response to a question (http://www.experts-exchange.com/Networking/Network_Management/Network_Analysis/Q_28230497.html) here at Experts Exchange. The Original Poster (OP) requires a utility that will accept a list of IP addresses …
So, you're experiencing issues on your network and you've decided that you need to perform some tests to determine whether your cabling is good.  You're likely thinking that you may need to spend money which you probably don't have on hiring/purchas…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

721 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question