Snippets for netstat

Connections to 80/443 ports:

netstat -tn | egrep ':80|:443'

Sorted connections to 80/443 and only established:

netstat -tn | egrep ':80|:443' | grep ESTABLISHED | awk '{print $5}' | sed 's/:.*//' | sort | uniq -c | sort -n

Count of connections:

netstat -tn | egrep ':80|:443' | grep ESTABLISHED | wc -l

Then check WEB server logs