8843 questions

10489 answers

16453 comments

15777 members

0 votes
279 views 13 comments
by
I would like to (preferably from the command line on the Pi), see which applications are using the WAN (mobile) connection and the bytes sent/received?

Is this at all possible on the RUT955 (f/w >00.06.05.346) please?

1 Answer

0 votes
by

Hello, 

You can use SSH to RUT955 in this case from the Rasp Pi it is connected. And you can see the total data usage for Mobile WAN via mdcollectdctl commands. 



For more information you may refer to this link: https://wiki.teltonika-networks.com/view/RUT955_Mobile_Traffic

You can get this mdcollectd.db data from /tmp/mdcollectd.db from the router itself.

Note: There is a chance of data loss when the router is power is cut.  

For the other question about monitoring which application is using the most additional research and development may be needed. But if you want to implement this functionality I suggest to contact your sales manager for this one. 

Hope it helps.

Regards,
Jerome

by

Hello, 

The calculation is like this it has a little discrepancy. 

Let say you have a record of 23060019 from your mdcollectd.db you can convert that one to Megabytes via this solution. 

I recommend it on an excel sheet to make it much simple simply by: Value x 1.024 / 10^6



I hope it helps 

Regards,
Jerome

by

I believe the "tcpdump" gives the best  analysis of packets sent/received. I then use "tshark -z conv,ip -r <pcap file>" on the Pi to break it down by IP. Would be nice to be broken down by IP/port as well, but that is something to work on.

I can see a couple of DNS look ups to "rut.teletonika.lt", what are these for please? All data traffic is "off" presently. There seem to be quite a lengthy exchange with port 5000 on IP 3.120.7.82, which I don't understand.

I am also uploading the /tmp/mdcollectd.db to the Pi, and using the sqlite browser to get access to the data. It looks like it gives a breakdown of total traffic per hour, which is nice :)

Unfortunately the values reported from the mdcollecteddctl remain a mystery.

by
Had nearly 20kb of data to this IP address 3.120.7.82 yesterday, and I have no idea what it is and if it's necessary?
by

Hello, 

That ip address is for Amazon Technologies Inc. based on https://www.lookip.net/whois/3.120.7.82 

May i know if the RMS functionality of the device is enabled or not. Could you try disabling it and see if this IP address will still show up on your tcp logs :) 

Regards,
Jerome

by
I've disabled the RMS functionality and we are looking good now, thanks for your assistance.