Solved

monitor and alert on specific TCP/IP port setting

Posted on 2014-04-13
7
546 Views
Last Modified: 2014-04-16
I have a need to alert me when a specific tcp port is opened, I don't want to block it just know when its opened.  What software, alert or batch file I can use to alert me with a notification of some sort that it has been active and connected with.
0
Comment
Question by:jo80ge121
7 Comments
 
LVL 40

Expert Comment

by:omarfarid
ID: 39998232
What is your platform?

You could use netstat to see LISTEN or ESTABLISHED status for specific ports
0
 

Expert Comment

by:jmathon
ID: 39998421
You can also use nagios to monitor a specific port, and alert you when the device is available.
0
 
LVL 27

Expert Comment

by:skullnobrains
ID: 39998556
you need to give information regarding your setup. are you trying to know if a port is opened on your local machine ? are you a firewall admin trying to see what your users are doing ? in that case what firewall do you use and do you have the ability to sniff the network from a remote machine ?
0
Now Available: Firebox Cloud for AWS and FireboxV

Firebox Cloud brings the protection of WatchGuard’s leading Firebox UTM appliances to public cloud environments. It enables organizations to extend their security perimeter to protect business-critical assets in Amazon Web Services (AWS).

 
LVL 37

Expert Comment

by:bbao
ID: 39998670
generally, commonly there are two approaches to monitor and alert TCP/IP port usage.

1. host based. a port monitoring software is required to be installed on the host computer on which the target applications run. the software can be a simple software monitoring ports usage only or a comprehensive firewall software monitoring all stateful traffic.

2. external firewall based. full log mechanism such as syslog should be enabled on firewall to capture all essential information of the traffic between the source and destination hosts.

for both methods, if the logs can be collected and a port filter can be applied, you can see the result you are after.
0
 

Author Comment

by:jo80ge121
ID: 39998970
sorry all - the setup information is to be installed on a windows 7 pc not a external firewall.  We have this remote program we use in house that uses a specific port to gain access to a pc tcp 9345.  My technician staff have been told to call ahead before remoting in as a courtesy however I've been hearing different.  For certain end users I want to be able to put in a simple alert of some sort that the remote program is active on a pc so I can find out if the rumors are true.
0
 
LVL 27

Accepted Solution

by:
skullnobrains earned 500 total points
ID: 39999343
is is feasible through a script, but this tool should be easier to setup

http://www.addictivetips.com/windows-tips/attacker-a-tcpudp-port-listener/

you should be able to configure it to alert on connections to specific ports

personal firewalls such as commodo can also do such things easily
0
 

Author Closing Comment

by:jo80ge121
ID: 40004586
thank you. it should work just fine.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Changing Lease Duration for DHCP clients 34 63
Network setup between buildings 4 55
Eset Smart Securties ARP poisoning attack 3 44
Layer 3 Switch Configuration 12 38
When you try to share a printer , you may receive one of the following error messages. Error message when you use the Add Printer Wizard to share a printer: Windows could not share your printer. Operation could not be completed (Error 0x000006…
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question