WinXP TCP/IP connection logging?

R

Rob R. Ainscough

I'm wondering if there is anything built into WinXP to log attempted
communications via TCP/IP on any port? I know the Firewall can log
successful connections, but it doesn't show much more than that. I'd like
to see a log of any IP that is communicating or attempting to communicate
with my WinXP PC -- something similar to what IIS can do when logging IP
source and file requests.

I suppose I could probably code my own utility/service, but I was just
curious if something already existed. Any third party tools that do this?

Thanks, Rob.
 
D

Daniel Crichton

Rob wrote on Mon, 17 Apr 2006 10:50:57 -0700:
I'm wondering if there is anything built into WinXP to log attempted
communications via TCP/IP on any port? I know the Firewall can log
successful connections, but it doesn't show much more than that. I'd like
to see a log of any IP that is communicating or attempting to communicate
with my WinXP PC -- something similar to what IIS can do when logging IP
source and file requests.

I suppose I could probably code my own utility/service, but I was just
curious if something already existed. Any third party tools that do this?

Thanks, Rob.

For something in realtime, check APorts. Very handy for troubleshooting.

Dan
 
D

Daniel Crichton

Rob wrote on Mon, 17 Apr 2006 10:50:57 -0700:
I'm wondering if there is anything built into WinXP to log attempted
communications via TCP/IP on any port? I know the Firewall can log
successful connections, but it doesn't show much more than that. I'd like
to see a log of any IP that is communicating or attempting to communicate
with my WinXP PC -- something similar to what IIS can do when logging IP
source and file requests.

I suppose I could probably code my own utility/service, but I was just
curious if something already existed. Any third party tools that do this?

Thanks, Rob.

Oops, my other reply should have said Active Ports.

Dan
 
R

Rob R. Ainscough

Active Ports 1.4 is a great tool, it is just missing one KEY feature, it
can't log the realtime output to a file :(

Thanks, Rob.
 
S

Steven L Umbach

Microsoft has a cool tool called Port Reporter that installs as a service
that you may want to take a look at and you can use Port Reporter Parser
tool with it. I also like Ethereal and you can easily configure capture
filters to try and narrow down what traffic is logged though that is not a
built in or Microsoft tool. Also check out some of the free tools from
Foundstone such as the ones shown for intrusion detection tools such as
Attacker. --- Steve

http://support.microsoft.com/default.aspx?scid=kb;en-us;837243
http://www.microsoft.com/downloads/...9B-BAE9-4243-B9D6-63E62B4BCD2E&displaylang=en
http://www.foundstone.com/index.htm...ation.htm&subcontent=/resources/freetools.htm
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top