How can I log all IPs and hostnames a linux system is trying to connect to?

networking linux

You can use standard traffic monitoring tools, like flowcapture + ipt_NETFLOW, (or softflowd) to record all IPs, ports, etc. a machine accesses. Then flow-tools utilities will allow you to extract various statistics.

For DNS names it is impossible in case modern inventions like DoH are used. If it's not used, you can set up a DNS resolver and log all queries.


The simplest way would be to use iptables with -j LOG.

Related

Construct public ipv6 adress from hostname of router and interface id of client [closed]
pip not found fresh Kali Linux installed
Is it safe to install Linux on a SD card? [closed]
RAM Part Numbers - Meaning?
Avoid having to change the year in dates of formulas
Why won't cmd exit after execution of batch file?
ffmpeg combining both -af and -filter_complex filters (use left track to create mono only track *and* normalise audio)
Disable Fortitoken on a Fortigate Firewall
Select each nth row in Excel
Disable command prompt left click copying [duplicate]
How to complete restore using just a VHDX file?
How to fix SSD Secure erase disabled for Kingston