commit 79890174ab2d76979c4e245cd6565bd503c36461 parent 2324907dabfa35a08458b3e9e4ec520fc631025b Author: pyratebeard <root@pyratebeard.net> Date: Thu, 22 Nov 2018 15:02:58 +0000 tcpdump page Diffstat:
| M | Home.md | | | 1 | + |
| A | technology/monitoring/tcpdump.md | | | 21 | +++++++++++++++++++++ |
2 files changed, 22 insertions(+), 0 deletions(-)
diff --git a/Home.md b/Home.md @@ -66,6 +66,7 @@ ### monitoring - [snmp](technology/monitoring/snmp) +- [tcpdump](technology/monitoring/tcpdump) ### networking - [subnet_cheatsheet](technology/networking/subnet_cheatsheet) diff --git a/technology/monitoring/tcpdump.md b/technology/monitoring/tcpdump.md @@ -0,0 +1,21 @@ +# tcpdump + +## capture entire packet +``` +tcpdump -nnvvXSs 1514 -i eth0 +``` +- nn : don't convert hostnames or port names +- vv : verbosity level +- X : payload. shows packet contents in both ASCII and HEX +- S : prints absolute sequence numbers +- s : set snaplen (in this case 1514) + +## read entire packet +``` +tcpdump -qns 0 -A -r <filename> +``` +- q : quiet +- n : don't convert host names +- s : set snaplen (0 means catch whole packets) +- A : print each packet in ASCII +- r : read from file