Hi all,
I have a SUSE linux server which repeatedly tries to open a tcp connection to a proxy server on port 8080.
But i do not know which process opens the connection and what url it tries to reach.
Thats because the proxy server is not in my hands and the server is not allowed to access the proxy.
The tcp session itself is not accepted so i never see any url request within a capture.
I tried to find which process tries to open the connection by using "lsof", "ss" and "netstat" commands but the only thing i see is an output like this:
# netstat -nap | grep 8080
tcp 0 0 10.183.45.88:53550 10.182.33.105:8080 TIME_WAIT -
So, there is no process listed.
I guess i am not able to catch the moment during the tcp session init.
Any idea how i can find out which process is initiating the tcp connection to the proxy ?
Thanks!
I have a SUSE linux server which repeatedly tries to open a tcp connection to a proxy server on port 8080.
But i do not know which process opens the connection and what url it tries to reach.
Thats because the proxy server is not in my hands and the server is not allowed to access the proxy.
The tcp session itself is not accepted so i never see any url request within a capture.
I tried to find which process tries to open the connection by using "lsof", "ss" and "netstat" commands but the only thing i see is an output like this:
# netstat -nap | grep 8080
tcp 0 0 10.183.45.88:53550 10.182.33.105:8080 TIME_WAIT -
So, there is no process listed.
I guess i am not able to catch the moment during the tcp session init.
Any idea how i can find out which process is initiating the tcp connection to the proxy ?
Thanks!