Hi, I've got an application that has a specific port open 11001, that multiple connections, most looped back on itself.

            However, we have another server (that is another groups machine, and isn't monitored by Xymon), that connects to this port.

            Reading the analysis.cfg man page, it looks like criteria is either local or remote, not both.

            Is there a way to monitor this situation?

netstat -ant |grep 11001

tcp 0 0 0.0.0.0:11001 0.0.0.0:* LISTEN tcp 0 0 192.168.30.15:11001 192.168.30.15:37852 ESTABLISHED tcp 0 0 192.168.30.15:37852 192.168.30.15:11001 ESTABLISHED tcp 0 0 192.168.30.15:37864 192.168.30.15:11001 ESTABLISHED tcp 0 0 192.168.30.15:37856 192.168.30.15:11001 ESTABLISHED tcp 0 0 192.168.30.15:11001 172.28.104.66:39904 ESTABLISHED tcp 0 0 192.168.30.15:11001 192.168.30.15:37862 ESTABLISHED tcp 81 0 192.168.30.15:11001 204.155.140.230:53680 ESTABLISHED tcp 486 0 192.168.30.15:11001 172.28.104.66:39910 ESTABLISHED tcp 0 0 192.168.30.15:11001 204.155.140.230:53682 ESTABLISHED tcp 0 0 192.168.30.15:11001 204.155.140.230:53679 ESTABLISHED tcp 0 0 192.168.30.15:37862 192.168.30.15:11001 ESTABLISHED tcp 34 0 192.168.30.15:11001 192.168.30.15:37864 ESTABLISHED tcp 0 0 192.168.30.15:11001 192.168.30.15:37856 ESTABLISHED

Paul Root Lead Operations Engineer - IT Managed Services 390 Commerce Dr Woodbury, Mn 55125 651-312-5207 paul.root at centurylink.com

This communication is the property of CenturyLink and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may be unlawful. If you have received this communication in error, please immediately notify the sender by reply e-mail and destroy all copies of the communication and any attachments.