11-14-2008
tcpdump -i "interface" should do the work. Of course it has several other options, "man tcpdump" will show you how to do the magic.
Cheers
8 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
is there a snoop equivalent in other flavors of unix? HPUX, SCO or linux.
TIA
Peter (2 Replies)
Discussion started by: pbonilla
2 Replies
2. UNIX for Advanced & Expert Users
is there a snoop equivalent in other flavors of unix? for AIX IBM (1 Reply)
Discussion started by: jcasares
1 Replies
3. Shell Programming and Scripting
I am using "ps ax" command in one of my scripts . AIX has x flag for ps . is there any equilent command for ps ax in solaris ?
Thanks (1 Reply)
Discussion started by: talashil
1 Replies
4. Solaris
hi there
is there a solaris equivalent to the linux screen command? (1 Reply)
Discussion started by: milhan
1 Replies
5. UNIX for Dummies Questions & Answers
contents of /etc/default/fs file in solaris are
@:/root !ksh less /etc/default/fs
LOCAL=ufs
i want to retrieve same LOCAL variable in redhat Linux...
any1 knows path of corresponding file in Linux? (0 Replies)
Discussion started by: crackthehit007
0 Replies
6. Solaris
contents of /etc/default/fs file in solaris are
@:/root !ksh less /etc/default/fs
LOCAL=ufs
i want to retrieve same LOCAL variable in redhat Linux...
any1 knows path of corresponding file in Linux? (3 Replies)
Discussion started by: crackthehit007
3 Replies
7. Solaris
I've successfully installed syslog-ng and chkconfig using the packages from the OpenCSW project, these packages install under /opt/csw. I now need to disable the default syslog daemon and enable the new service created by the OpenCSW package (/etc/init.d/cswsyslog_ng).
Is there any good way to... (3 Replies)
Discussion started by: aussieos
3 Replies
8. Red Hat
Hi, I come from a legacy Solaris background with lots of experience with Solaris Containers/zones that we use for network and process isolation from each other.
Currently we have a RHEL7 Linux VM running on VMWare, but we would like to segment that VM with some form of containers and achieve... (1 Reply)
Discussion started by: ckmehta
1 Replies
PFLOG(4) BSD Kernel Interfaces Manual PFLOG(4)
NAME
pflog -- packet filter logging interface
SYNOPSIS
device pflog
DESCRIPTION
The pflog interface is a pseudo-device which makes visible all packets logged by the packet filter, pf(4). Logged packets can easily be mon-
itored in real time by invoking tcpdump(1) on the pflog interface, or stored to disk using pflogd(8).
The pflog0 interface is created automatically at boot if both pf(4) and pflogd(8) are enabled; further instances can be created using
ifconfig(8).
Each packet retrieved on this interface has a header associated with it of length PFLOG_HDRLEN. This header documents the address family,
interface name, rule number, reason, action, and direction of the packet that was logged. This structure, defined in <net/if_pflog.h> looks
like
struct pfloghdr {
u_int8_t length;
sa_family_t af;
u_int8_t action;
u_int8_t reason;
char ifname[IFNAMSIZ];
char ruleset[PF_RULESET_NAME_SIZE];
u_int32_t rulenr;
u_int32_t subrulenr;
uid_t uid;
pid_t pid;
uid_t rule_uid;
pid_t rule_pid;
u_int8_t dir;
u_int8_t pad[3];
};
EXAMPLES
Create a pflog interface and monitor all packets logged on it:
# ifconfig pflog1 up
# tcpdump -n -e -ttt -i pflog1
SEE ALSO
tcpdump(1) inet(4), inet6(4), netintro(4), pf(4), ifconfig(8), pflogd(8)
HISTORY
The pflog device first appeared in OpenBSD 3.0.
BSD
December 10, 2001 BSD