Iplog is an application that logs TCP/IP traffic.
Some of the specific events that iplog is able to detect include TCP port scans, TCP null scans, FIN scans, UDP and ICMP "smurf" attacks, and bogus TCP flags. In addition, iplog can also track TCP SYN scans, TCP "Xmas" scans, ICMP ping floods, UDP scans, and IP fragment attacks.
One of the key benefits of iplog is that it is able to run in promiscuous mode, meaning that it can monitor activity across all hosts on a network. Iplog relies on libpcap to read data from the network and can be easily ported to any system that supports posix threads and libpcap.
While some users have reported issues with iplog not logging anything, the developer recommends commenting out line 41 of iplog.c to see if this resolves the issue. Users are also encouraged to report their operating system and version and provide further details about the issue and whether deleting the line helped.
Finally, iplog has recently been released as version 2.2.3, offering a range of updates and improvements to further enhance its functionality and effectiveness. Overall, iplog is a solid tool for network monitoring and traffic logging, capable of providing valuable insights and protection against malicious attacks.
Version 2.2.3: N/A