WinXP TCP/IP connection logging?

  • Thread starter Thread starter Rob R. Ainscough
  • Start date Start date
R

Rob R. Ainscough

I'm wondering if there is anything built into WinXP to log attempted
communications via TCP/IP on any port? I know the Firewall can log
successful connections, but it doesn't show much more than that. I'd like
to see a log of any IP that is communicating or attempting to communicate
with my WinXP PC -- something similar to what IIS can do when logging IP
source and file requests.

I suppose I could probably code my own utility/service, but I was just
curious if something already existed. Any third party tools that do this?

Thanks, Rob.
 
Rob wrote on Mon, 17 Apr 2006 10:50:57 -0700:
I'm wondering if there is anything built into WinXP to log attempted
communications via TCP/IP on any port? I know the Firewall can log
successful connections, but it doesn't show much more than that. I'd like
to see a log of any IP that is communicating or attempting to communicate
with my WinXP PC -- something similar to what IIS can do when logging IP
source and file requests.

I suppose I could probably code my own utility/service, but I was just
curious if something already existed. Any third party tools that do this?

Thanks, Rob.
Click to expand...

For something in realtime, check APorts. Very handy for troubleshooting.

Dan
 
Rob wrote on Mon, 17 Apr 2006 10:50:57 -0700:
I'm wondering if there is anything built into WinXP to log attempted
communications via TCP/IP on any port? I know the Firewall can log
successful connections, but it doesn't show much more than that. I'd like
to see a log of any IP that is communicating or attempting to communicate
with my WinXP PC -- something similar to what IIS can do when logging IP
source and file requests.

I suppose I could probably code my own utility/service, but I was just
curious if something already existed. Any third party tools that do this?

Thanks, Rob.
Click to expand...

Oops, my other reply should have said Active Ports.

Dan
 
Active Ports 1.4 is a great tool, it is just missing one KEY feature, it
can't log the realtime output to a file :(

Thanks, Rob.
 
Microsoft has a cool tool called Port Reporter that installs as a service
that you may want to take a look at and you can use Port Reporter Parser
tool with it. I also like Ethereal and you can easily configure capture
filters to try and narrow down what traffic is logged though that is not a
built in or Microsoft tool. Also check out some of the free tools from
Foundstone such as the ones shown for intrusion detection tools such as
Attacker. --- Steve

http://support.microsoft.com/default.aspx?scid=kb;en-us;837243
http://www.microsoft.com/downloads/...9B-BAE9-4243-B9D6-63E62B4BCD2E&displaylang=en
http://www.foundstone.com/index.htm...ation.htm&subcontent=/resources/freetools.htm
 
Back
Top