This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
network_security_assesment [2009/06/26 08:01] k2patel |
network_security_assesment [2020/08/10 02:35] (current) |
||
---|---|---|---|
Line 469: | Line 469: | ||
If no packet is received, an intermediary security device silently dropped it. | If no packet is received, an intermediary security device silently dropped it. | ||
- | [[100]] | + | ==== Simple tcpdump ==== |
+ | dumping traffic with pcap_filter | ||
+ | <code bash> | ||
+ | tcpdump -i eth2 -s 0 -w /tmp/mar_2017.pcap host 192.168.1.86 | ||
+ | </code> | ||
+ | |||
+ | Reading pcap output file | ||
+ | <code bash> | ||
+ | tcpdump -qns 0 -X -r /tmp/mar_2017.pcap | ||
+ | </code> |