Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

monitor and alert on specific TCP/IP port setting

Posted on 2014-04-13
7
Medium Priority
?
556 Views
Last Modified: 2014-04-16
I have a need to alert me when a specific tcp port is opened, I don't want to block it just know when its opened.  What software, alert or batch file I can use to alert me with a notification of some sort that it has been active and connected with.
0
Comment
Question by:jo80ge121
7 Comments
 
LVL 40

Expert Comment

by:omarfarid
ID: 39998232
What is your platform?

You could use netstat to see LISTEN or ESTABLISHED status for specific ports
0
 

Expert Comment

by:jmathon
ID: 39998421
You can also use nagios to monitor a specific port, and alert you when the device is available.
0
 
LVL 27

Expert Comment

by:skullnobrains
ID: 39998556
you need to give information regarding your setup. are you trying to know if a port is opened on your local machine ? are you a firewall admin trying to see what your users are doing ? in that case what firewall do you use and do you have the ability to sniff the network from a remote machine ?
0
Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

 
LVL 37

Expert Comment

by:bbao
ID: 39998670
generally, commonly there are two approaches to monitor and alert TCP/IP port usage.

1. host based. a port monitoring software is required to be installed on the host computer on which the target applications run. the software can be a simple software monitoring ports usage only or a comprehensive firewall software monitoring all stateful traffic.

2. external firewall based. full log mechanism such as syslog should be enabled on firewall to capture all essential information of the traffic between the source and destination hosts.

for both methods, if the logs can be collected and a port filter can be applied, you can see the result you are after.
0
 

Author Comment

by:jo80ge121
ID: 39998970
sorry all - the setup information is to be installed on a windows 7 pc not a external firewall.  We have this remote program we use in house that uses a specific port to gain access to a pc tcp 9345.  My technician staff have been told to call ahead before remoting in as a courtesy however I've been hearing different.  For certain end users I want to be able to put in a simple alert of some sort that the remote program is active on a pc so I can find out if the rumors are true.
0
 
LVL 27

Accepted Solution

by:
skullnobrains earned 1500 total points
ID: 39999343
is is feasible through a script, but this tool should be easier to setup

http://www.addictivetips.com/windows-tips/attacker-a-tcpudp-port-listener/

you should be able to configure it to alert on connections to specific ports

personal firewalls such as commodo can also do such things easily
0
 

Author Closing Comment

by:jo80ge121
ID: 40004586
thank you. it should work just fine.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
WARNING:   If you follow the instructions here, you will wipe out your VTP and VLAN configurations.  Make sure you have backed up your switch!!! I recently had some issues with a few low-end Cisco routers (RV325) and I opened a case with Cisco TA…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

783 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question