How to Monitor Network Traffic with Ax3soft Unicorn


Internet traffic is the flow of data across the Internet, including file sharing, streaming media, computer viruses and so on.

Because of the distributed nature of the Internet, there is no single point of measurement for total Internet traffic. Internet traffic data from public peering points can give an indication of Internet volume and growth, but these figures exclude traffic that remains within a single service provider's network as well as traffic that crosses private peering points.

  • Monitor internet traffic step by step

Sometimes we want to monitor internet traffic generated or is generating in LAN, here is a detailed process how we can monitor internet traffic with Unicorn.

First let's start a capture with Ax3soft Unciorn, then do some online activities, such as browsing a website, sending and receiving emails, downloading some files and so on. All these activities will generate different kinds of internet traffic. We may keep the project running to continuously monitor internet traffic or stop the project to do some analysis.

To monitor internet traffic, it is a primary choice to view the Node Explorer:

Figure 1: Locate Internet Addresses in the Node Explorer

  • Monitor Network traffic via the Nodes tab

In these three endpoint view, including Physical Endpoint, IPv4 Endpoint and IPv6 Endpoint, we can monitor network traffic of each physical address node and IP address node, both local and remote. We can easily find out the nodes with abnormal traffic via sorting feature of Unicorn, such as which hosts are generating or have generated the largest traffic.

  • Monitor Network traffic via the Protocol tab

All protocols applied in your network transmission are listed in the protocol tab. We can monitor network traffic of each protocol via protocol tab. To analyze the protocols in the network traffic, we can easily understand what applications are consuming the network bandwidth, for example, the HTTP stands for website browsing, and the POP3 stands for email, etc.

  • Monitor Network traffic via the Conversation tab

We can monitor network traffic of each conversation type and the figure out which conversation has generated the largest network traffic via conversation tabe.

