[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

RE: tcpdump?




 
> Date: Sat, 20 Feb 2010 11:15:33 +0000
> Subject: tcpdump?
> From: brianolaoi@gmail.com
> To: debian-user@lists.debian.org
>
> > #tcpdump port 4957
> > I want to obtain the payload data to see what is realy being exchanged
> > between my Debian server and the outside network element . Can you please
> > let me know how I can modify my command ?
>
> Try
> tcpdump host <IP-addr-deb-server> and port 4957
>
> This will grab all packets to and from the server, which are to or
> from port 4957
>
> If you want traffic in one direction only, you can use "src host" or
> "dst host" instead of "host", and/or
> "src port" or "dst port" instaed of "port".
>
> You could add -s 0 to ensure you grab entire packets regardless of
> size, and -v, -vv or -vvv if you need more details on packets.
>
>
> John
>
&g t;
> --
> To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> Archive: http://lists.debian.org/1f1816a91002200315o39f14dbdsd6376f5a3b9ec2f6@mail.gmail.com
>
 
I tried as the following :
#tcpdump -s 0 -vvv port 4957
But the output does not have additional data over the 'tcpdump port 4957' output . Can you please let me know what is wrong here?

 


Hotmail: Trusted email with powerful SPAM protection. Sign up now.

Reply to: