I've been running a capture on a host for a week that continuously writes 500MB pcaps and have been manually combining those and then removing duplicate entries to get a list of source/destination traffic to/from the VM. Is there any low resource agent/program that can be installed that continuously captures this type of info? There's a lot of room for error in the way I'm doing it now and its super tedious!
What other methods are popular to capture this type of information?
No comments:
Post a Comment