Script that only counts Established, TIME_WAIT, and Closed Wait connections using Netstat

linux awk scripting perl ksh
5,191

Your script can be slightly modified to only process the states you need:

netstat -ant | awk '/ESTABLISHED|LISTEN|CLOSE_WAIT/ {print $6}' | \
    sort | uniq -c | sort -n

A further step would be to everything with awk, e.g. :

netstat -ant | awk '
/ESTABLISHED|LISTEN|CLOSE_WAIT/ {count[$6]++}
END {
  for(s in count) {
    printf("%12s : %6d\n", s, count[s]);
  }
}'
Share:
5,191

Related videos on Youtube

monkeychef
Author by

monkeychef

Updated on September 18, 2022

Comments

  • monkeychef
    monkeychef over 1 year

    I'm trying to make a script (using Perl, but it isn't necessary) that will only count the number of Established, Time_Wait, and Closed_Wait connections on a system and print them in terminal. So far I've figured out that I can use :

    netstat -ant | awk '{print $6}' | sort | uniq -c | sort -n

    in order to print all of the connections, but when I run this from a script it will not print in terminal and it also gives me some connections that I am not looking for such as Listen and Foreign. The reason why it must only show Established, Time_Wait, and Closed_Wait is because the script is being used by a monitoring program that will fail if any other connection types show up. Can anyone make a suggestion? Thanks!

    • monkeychef
      monkeychef over 8 years
      my %count; open my $NET, '-|', qw{ /bin/netstat -ant } or die $!; <$NET> ; <$NET> ;#Removes "Foreign" while (<$NET>) { my ($protocol, $recv, $send, $local_addr, $foreign_addr, $state) = split; # Do whatever you need with the information, e.g. $count{$state}++; } for my $state (keys %count) { print "$state\t$count{$state}\n"; }
    • Andy Dalton
      Andy Dalton over 8 years
      netstat -nat | egrep 'ESTABLISHED|TIME_WAIT|CLOSE_WAIT' | wc -l
  • monkeychef
    monkeychef over 8 years
    This was fantastic, thank you! Is there any way you could also help develop the rest of the script so that when the program is run it only outputs those three lines?
  • jlliagre
    jlliagre over 8 years
    It's hard to tell without more information about what the rest of the script should be.
  • monkeychef
    monkeychef over 8 years
    I really just need the script to ignore anything else that could pop up such as FIN_WAIT2, I'm only looking for established, time wait, and close wait.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Linux command to replace string in LARGE file with another string
Replacing multiple lines in sed or awk
Output of `java -version` not matched by grep or awk
Replace all but a set of characters in a file with newline
how to remove all double quotes from csv except specific field
Compare two Arrays in KSH and output the difference
How to run a perl script inside another perl script
Remove a sentence which starts with word "mark" and ends with ";"
How to remove a certain symbol for a bash script
Print the last-but-one field