Past Network Connections Made to a Linux Server

I am at my wits end.. and need to step back and take another look at my problem from fresh eyes. That's where this post and your help comes in.

I need to find out what past network connections may have been made to my linux server.

I'm probably not phrasing my searches right so not turning up anything useful. It was running an old version of Redhat (kernal 2.4.20-08).

Currently I have a DD copy of the drive running in a VM using LiveView.

Any tips or points in the right direction would be greatly appreciated.

Thanks!

Re: Past Network Connections Made to a Linux Server

Not really backtrack related. Have you checked the log files for your various daemons?

Re: Past Network Connections Made to a Linux Server

you could start with cat /var/log/auth.log

Re: Past Network Connections Made to a Linux Server

Are you logging the packets ? another point to inspect

Regards,