10-14-2009
Capturing bad packets
Hello,
SNMP reports from my Linux server a large number of "ipInAddrErrors" on several of my systems. According to one description, these packets are
discarded datagrams due to:
Quote:
the IP address in their IP header's destination field was not a valid address to be received at this entity. ... For entities which are not IP Gateways and therefore do not forward datagrams, this counter includes datagrams discarded because the destination address was not a local address.
How do I determine what packets these are? Can tcpdump help? If so, can anyone suggest a filter?
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
How can i send a packet, and what is an empty packet? (8 Replies)
Discussion started by: Avatar0fEvil
8 Replies
2. Programming
I am working on a project, which has the following type of hardware setup.
A special hardware device is receiving data from an external network interface. So we can have multiple such a hardware devices. Now these hardware devices will route the captured incoming data through the external... (4 Replies)
Discussion started by: S.P.Prasad
4 Replies
3. IP Networking
there are a number of clients connected to a server.... how can i count that each clients recieve ...? how do i moniter the activity of the client..? (2 Replies)
Discussion started by: damn_bkb
2 Replies
4. UNIX for Advanced & Expert Users
I need to write a script that can find a bad record (for example: there is date field colom but value provided in the file for this field is N/A) then script shoud searches this pattern and then insert the whole record into the bad file.
Example:
File1
Name designation dateOfJoining... (1 Reply)
Discussion started by: shilendrajadon
1 Replies
5. Shell Programming and Scripting
I need to write a script that can find a bad record (for example: there is date field colom but value provided in the file for this field is N/A) then script shoud searches this pattern and then insert the whole record into the bad file.
Example:
File1
Name designation dateOfJoining... (2 Replies)
Discussion started by: shilendrajadon
2 Replies
6. Shell Programming and Scripting
Hello
I need to send some packets to check connection. Packets will be catch by snoop. Is there any Sun tool to send some packets on selected IP and Port?
Thx (1 Reply)
Discussion started by: miojamo
1 Replies
7. HP-UX
Hi there,
are there any functions that can get the packets statistics on UNIX ?
thanks. (2 Replies)
Discussion started by: Frank2004
2 Replies
8. IP Networking
I am trying to capture tcpdump for traffic to a port in a file but this does not seem to capture all the packets. Command I use is :
tcpdump -w tdump.dat port 22
Why is it not capturing all the packets ?
Here is my experiment:
root@pmode-client6 adc-demo]# tcpdump port 22
tcpdump:... (5 Replies)
Discussion started by: radiatejava
5 Replies
9. IP Networking
Hi guys,
I'm using a Linux system(Ubuntu) and I've been trying to find a method to read the total packets received/sent on a specific port (e.g port 80 or port 25) on a local machine. I can read the overall total packets received/sent from the /proc/net/dev file system. But what I can't do is... (2 Replies)
Discussion started by: lildee
2 Replies
10. Shell Programming and Scripting
Why I get bad replace when using eval?
$ map0=( "0" "0000" "0")
$ i=0
$ eval echo \${map$i}
0000
$ a=`eval echo \${map$i}` !!!error happens!!!
bash: ${map$i}: bad substitution
How to resolve it ?
Thanks! (5 Replies)
Discussion started by: 915086731
5 Replies
icmp(4p) icmp(4p)
Name
icmp - Internet Control Message Protocol
Syntax
#include <sys/socket.h>
#include <netinet/in.h>
s = socket(AF_INET, SOCK_RAW, proto);
Description
The ICMP is the error and control message protocol used by the Internet Protocol (IP) transport layer and the Internet protocol family. It
can be accessed through a ``raw socket'' for network monitoring and diagnostic functions. The proto argument to the socket call to create
an ICMP socket is obtained from the routine. ICMP sockets are connectionless, and are normally used with the and system calls. The call
can also be used to fix the destination for future packets (in which case the or and or system calls can then be used).
Outgoing packets automatically have an IP header prepended to them (based on the destination address). Incoming packets are received with
the IP header and options intact.
Diagnostics
On failure, a socket operation returns any of the following errors:
[EISCONN] Tried to establish a connection on a socket that already has one, or tried to send a datagram with the destination address
specified and the socket was already connected.
[ENOTCONN] Tried to send a datagram, but no destination address was specified, and the socket has not connected.
[ENOBUFS] The system ran out of memory for an internal data structure.
[EADDRNOTAVAIL]
An attempt was made to create a socket with a network address for which no network interface exists.
See Also
inet(4f), intro(4n), ip(4p)
icmp(4p)