Re: tcpdump command

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora <fedora-list@xxxxxxxxxx>
Subject: Re: tcpdump command
From: Andy Green <andy@xxxxxxxxxxx>
Date: Fri, 18 May 2007 14:29:10 +0100
In-reply-to: <6b16fb4c0705180622w28909cd0o7926e6674a4246ea@xxxxxxxxxxxxxx>
References: <6b16fb4c0705180622w28909cd0o7926e6674a4246ea@xxxxxxxxxxxxxx>
Reply-to: For users of Fedora <fedora-list@xxxxxxxxxx>
User-agent: Thunderbird 2.0.0.0 (X11/20070419)

Kaushal Shriyan wrote:
> Hi
> 
> I have to capture network traffic between an appliance and content server
> using tcpdump command and then dump to a file and read and decode it using
> wireshark
> 
> How do i proceed
> 
> I have used tcpdump -i eth0 -s 1500 -w dump src host 192.168.0.1 and dst
> host www.example.com
> 
> when i read the dump capture file using wireshark i could only see packets
> being sent from src host to destination host, I could not see any packets
> being sent from destination host to src host.

You specified what you wanted too tightly... ONLY packets coming FROM
('src host') 192.168.0.1 and going TO ('dst host') www.example.com.

Just using

-i eth0 -s 1500 -w dump host www.example.com

will get you what you want: see

man tcpdump

-Andy

Follow-Ups:
- Re: tcpdump command
  - From: Kaushal Shriyan

References:
- tcpdump command
  - From: Kaushal Shriyan

Prev by Date: Re: amarok problem with .flac (was: xine)
Next by Date: Re: amarok problem with .flac (was: xine)
Previous by thread: tcpdump command
Next by thread: Re: tcpdump command
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]

Powered by Linux