Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: TCPdump script
Top Forums Shell Programming and Scripting TCPdump script Post 302505307 by DGPickett on Wednesday 16th of March 2011 04:11:12 PM
Old 03-16-2011
Requirement creep. Cron has a column for day of the week, but since you were overwriting, it seemed ok to run it every day regardless. If you want to keep, add the date into the file name.

I am not a tcpdump user this decade, so I admit you do need to stop it somehow. You might use head to cap the byte count and spin it off in the background, sleep a while, and 'kill -9 $! 2>/dev/null', so it does not run into the next run.

You might even put the files in a zip for each week or month, so space is not so quickly threatened, they are easily discarded and the dir does not grow big.
 

10 More Discussions You Might Find Interesting

1. Programming

How To Use tcpdump

I have two net-card. one is 172.16.24.99(ENG) ,another is 172.16.25.99(ENG-B). Both masks is 255.255.255.0. I will monitor data on the tcp port 8055 in ENG, How do I set option of tcpdump command (2 Replies)
Discussion started by: chenhao_no1
2 Replies

2. UNIX for Dummies Questions & Answers

tcpdump

does anybody know what the -d -dd and -ddd options are used for ? thanks (2 Replies)
Discussion started by: ant04
2 Replies

3. Cybersecurity

i would like to know about tcpdump

i would like to know about tcpdump i would like to use tcpdump to get information about these - Date - time - source hostname - source mac address - source ip address - destination ip address - see outbound only then i use command like this tcpdump -i le0 -n -q -tttt -e src net... (0 Replies)
Discussion started by: chamnanpol
0 Replies

4. IP Networking

i would like to know about tcpdump

i would like to know about tcpdump i would like to use tcpdump to get information about these - Date - time - source hostname - source mac address - source ip address - destination ip address - see outbound only then i use command like this tcpdump -i le0 -n -q -tttt -e src net... (2 Replies)
Discussion started by: chamnanpol
2 Replies

5. Shell Programming and Scripting

Help with script, trying to get tcpdump and rotate the file every 300 seconds

Greetings, I just started using scripting languages, im trying to get a tcpdump in a file, change the file name every 5mins ... this is what i have but its not working ... any suggestions? #!/bin/bash # timeout.sh #timestamp format TIMESTAMP=`date -u "+%Y%m%dT%H%M%S"` #tdump =`tcpdump... (3 Replies)
Discussion started by: livewire
3 Replies

6. Shell Programming and Scripting

write a script to parse some tcpdump output

i am trying to write a script to parse some tcpdump output, in each line of the tcpdump output, I know for sure there are 3 keywords exist: User{different usernamehere} NAS_ipaddr{different ip here} Calling_station{ip or dns name here} But the positions for these 3 keywords in the... (4 Replies)
Discussion started by: fedora
4 Replies

7. Shell Programming and Scripting

tcpdump script to parse "packers captured" details

I want a script that would do as:- a) gives me packet capture account for each time it runs. b) be able to run at a particular time for specific period time duration (1 min). c) for each time it runs it saves the time / day. Is there a way where i can capture the details as seen in the... (2 Replies)
Discussion started by: lazerz
2 Replies

8. Debian

Tcpdump Help !

Hi. Need Help with TcpDump Trying to sniff associatio-request with tcpdump but when i run this tcpdump -i eth0 wlan subtype assoc-req i get this error can anyone help me with this error ? Thanks alot !!:) (1 Reply)
Discussion started by: SoulZB
1 Replies

9. IP Networking

TCPdump

I've recently started learning to use TCPdump, and I find it pretty interesting. There's one thing I don't understand. When I tell it to capture packets on, say, the WiFi interface en1, it often captures packets sent or received by other hosts on the network. How can it do this? My... (3 Replies)
Discussion started by: Ultrix
3 Replies

10. Shell Programming and Scripting

Tcpdump on many machines from single script

Hi all, new to the forum and rusty with my scripting. I am trying to put together a quick and dirty script that will kickoff a tcpdump on multiple machines. Then, another script that will reach out (at a later time) to stop the processes and retrieve the data. It seems fairly easy conceptually... (2 Replies)
Discussion started by: k9sar
2 Replies

LEARN ABOUT CENTOS

cal

CAL(1)								   User Commands							    CAL(1)

NAME

       cal - display a calendar

SYNOPSIS

       cal [options] [[[day] month] year]

DESCRIPTION

       cal displays a simple calendar.	If no arguments are specified, the current month is displayed.

OPTIONS

       -1, --one
	      Display single month output.  (This is the default.)

       -3, --three
	      Display prev/current/next month output.

       -s, --sunday
	      Display Sunday as the first day of the week.

       -m, --monday
	      Display Monday as the first day of the week.

       -j, --julian
	      Display Julian dates (days one-based, numbered from January 1).

       -y, --year
	      Display a calendar for the current year.

       -V, --version
	      Display version information and exit.

       -h, --help
	      Display help screen and exit.

PARAMETERS

       A single parameter specifies the year (1 - 9999) to be displayed; note the year must be fully specified: cal 89 will not display a calendar
       for 1989.

       Two parameters denote the month (1 - 12) and year.

       Three parameters denote the day (1-31), month and year, and the day will be highlighted if the calendar is displayed on a terminal.  If	no
       parameters are specified, the current month's calendar is displayed.

       A year starts on Jan 1. The first day of the week is determined by the locale.

       The Gregorian Reformation is assumed to have occurred in 1752 on the 3rd of September. By this time, most countries had recognized the ref-
       ormation (although a few did not recognize it until the early 1900's). Ten days following that date were eliminated by the reformation,	so
       the calendar for that month is a bit unusual.

HISTORY

       A cal command appeared in Version 6 AT&T UNIX.

AVAILABILITY

       The cal command is part of the util-linux package and is available from ftp://ftp.kernel.org/pub/linux/utils/util-linux/.

util-linux							     June 2011								    CAL(1)
All times are GMT -4. The time now is 12:12 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy