Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Port flow capture
Homework and Emergencies Emergency UNIX and Linux Support Port flow capture Post 302943623 by otheus on Monday 11th of May 2015 07:29:16 AM
Old 05-11-2015
Traditionally, you must specify a device. Therefore

Code:
tcpdump -i eth0 -w /tmp/syn.pcap 'tcp[tcpflags] & (tcp-syn) != 0'

But that assumes you want it from eth0. Maybe you want it from wlan0. But maybe your system currently has no interfaces that are up. That would explain why you're not seeing any tcp packets and are resorting to tcpdump in the first place.

Also, the output will be to that file so you won't know it's working right away. Try it without -w... until you get some output.
 

9 More Discussions You Might Find Interesting

1. Cybersecurity

Flow of Unix System

Hello, Is there a functional flow of the UNIX security system that I can view? (1 Reply)
Discussion started by: spanglerbrod
1 Replies

2. Programming

dilemma in control flow

hello im facing a queer problem when i execute the foll code in unix # include <stdio.h> # include <unistd.h> main(int argc,char *argv) { FILE *fp = fopen("/ras/chirag/fifotest/file.fifo","a"); int i=1; fprintf(fp,argv); printf("I SLEEP"); system("date"); for (i=0;i<50;i++)... (2 Replies)
Discussion started by: tej.buch
2 Replies

3. Programming

Flow Chart

Any One help how to draw the flow chart for C programe ? If any usefull link's. (1 Reply)
Discussion started by: sabari
1 Replies

4. Programming

buffer over flow detected

Hi, my program stops with a buffer overflow error, but i can't understand the problem. I have a file like: int array; //global variable void func(){ int i; for(i=0;i<n;i++)array=-1; ... } I had the error when i added the array initialization. the file is a part of a C project. What... (1 Reply)
Discussion started by: littleboyblu
1 Replies

5. Shell Programming and Scripting

Understanding Logic and Flow better

i am in an epic quagmire of horrid misunderstanding. its been a while since ive been in the scene, couldnt remember my login for the account i used to have here, so excuse the 1st post. i dont want it to seem like ima post n boogy. in any case here we go: just recently installed mandriva... (6 Replies)
Discussion started by: SirDonkeyPunch
6 Replies

6. IP Networking

Creating a printer emulator to capture PDL/PCL data coming in on port 9100.

I have a number of Windows CE operator terminals. They have facility to print alarms/messages to ... aser or Inkjet (so they're using PCL). USB or IP. IP connection takes just the IP address. Question How could I create a service or daemon on a server to capture all this data?... (7 Replies)
Discussion started by: transistor
7 Replies

7. Shell Programming and Scripting

Flow Control in CSH

hi , I am new to scripting, i have a doubt can any one pls solve it for me the code is not working set users = (user1 user2 user3) echo The users are echo $users echo Enter the USER NAME set USER_NAME = $< set i = 1; for ( i = 1; i <= $#users; i++ ) if ( $USER_NAME == $users )... (1 Reply)
Discussion started by: Manju87
1 Replies

8. Shell Programming and Scripting

Will this flow work

B() { } A() { calling a function B } for condition do calling a function A done Shall after executing function B, the control will return back to loop? Thanks in advance :) (2 Replies)
Discussion started by: ezee
2 Replies

9. Solaris

How to find port number wwn of particular port on dual port HBA,?

please find the below o/p for your reference bash-3.00# fcinfo hba-port HBA Port WWN: 21000024ff295a34 OS Device Name: /dev/cfg/c2 Manufacturer: QLogic Corp. Model: 375-3356-02 Firmware Version: 05.03.02 FCode/BIOS Version: BIOS: 2.02; fcode: 2.01;... (3 Replies)
Discussion started by: sb200
3 Replies

LEARN ABOUT DEBIAN

ttt

ttt(1)									net								    ttt(1)

NAME

       ttt - Tele Traffic Tapper - a standalone program for local, real-time, graphical traffic-monitoring.

SYNTAX

       ttt [-interface device] [-interval ms] [-dumpfile file [-speed N]] [-yscale (K|M|n)]

DESCRIPTION

       ttt is the standalone traffic monitor program in the ttt program suite. It displays trafic-data of a local interface.

       To run ttt, you must be "root" on most systems since only root is allowed to access the network filter device.

       The  ttt program suite is yet another descendant of tcpdump but it is capable of real-time, graphical, local and remote traffic-monitoring.
       It won't replace tcpdump, rather, it helps you find out what to look into with tcpdump.

OPTIONS

       -interface device
	      specifies the interface for packet capture. If not specified, the default interface is chosen.

       -interval ms
	      Sets the interval in Milliseconds. If omitted, a interval of 1000 msec. is used as default.

       -dumpfile file [-speed N]
	      use a dumpfile (produced by "tcpdump -w") as input. The speed option specifies the acceleration factor of the replay speed.

       -yscale ('K'|'M'|n)
	      change the scale of y-axis. 'K' and 'M' represent 1000 and 1000000 respectively.

EXAMPLES

       To run this program the standard way type:

	      ttt

       To listen only on interface eth0:

	      ttt -interface eth0

AUTHORS

       ttt was written by Kenjiro Cho < kjc@csl.sony.co.jp>.

       This manual page was written by Thomas Scheffczyk <thomas.scheffczyk@verwaltung.uni-mainz.de>, for the Debian GNU/Linux system (but may	be
       used by others).

SEE ALSO

       tttview(1), tttprobe(1)

Kenjiro Cho								1.7								    ttt(1)
All times are GMT -4. The time now is 10:28 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy