How can I identity which process is sending data to a certain host on Linux?

linux sockets tcp network-traffic

As per title, I want to figure out the process responsible for certain traffic. I can see the traffic in wireshark, but I don't know which process it is.

Is there any straightforward way to do it? I'm thinking of using perf with kernel probes on the syscall used for resolving the hostnames but I'm wondering if there is an easier way. Thanks.

Solution 1:

ss -put | grep <port number> will tell you.

Related

Finding rotation axis and angle to align two 3D vector bases

Google Workspace with Outlook: set up multiple Gmail accounts to single Google Workspace mail profile

Should I set my BIOS to local time or UTC?

Find $x$ in the equation $ax^3+bx^2+cx=d$

Prove $4p-3$ is a square knowing that $n\mid p-1$ and $p\mid n^3-1$, $p$ prime

Is the usage of "more frequently" or "more often" correct in this scenario?

What is the correct way to properly quote and cite a foreign language resource? [closed]

Is there a rule for using or not using the definite article before people’s titles?

Plural of "radiation", "reflectance" and similar words

emphasizing someone has definitely done something like "I did go there" [closed]

Example of "A chain is only as strong as its weakest link"? [closed]

More ways to say "In his druken state"

Recent Posts

org.apache.kafka.common.errors.TimeoutException: Topic not present in metadata after 60000 ms

Why my code runs infinite time when i entered non integer type in c++ [duplicate]

How to retrieve Instagram username from User ID?

Serverless Framework - Variables resolution error

How do we access a file in github repo inside our azure databricks notebook