tcpdump
tcpdump
tcpdump -ttvn -ieth1
example
| Syntax: | Protocol | Direction | Host(s) | Value | Logical Operations | Other expression | |
|---|---|---|---|---|---|---|---|
| Value: | ether, fddi, ip, arp, rarp, decnet, lat, sca, moprc, mopdl, tcp and udp. If no protocol is specified, all the protocols are used. | src, dst, src and dst, src or dst. If no source or destination is specified, the “src or dst” keywords are applied. | net, port, host, portrange. If no host(s) is specified, the “host” keyword is used. | not, and, or. | |||
| Example: | tcp | dst | 10.1.1.1 | 80 | and | tcp dst 10.2.2.2 3128 |
$tcpdump -w comm.pcap -i eth0 dst 16.181.170.246 and port 22
