tcpdump

tcpdump -n host 192.168.0.142 and not port 22 and not arp and not igmp and host 127.0.0.1

tcpdump commands chain. use  host, port, proto  or “not arp” etc. and “and” as chain

 

-w to write a file

-s 65535 for max possible size.

example to read in realtime packets:

tcpdump -XX not port 22 -s 65535

This entry was posted on Sunday, March 31st, 2013 at 11:32 pmand is filed under . You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

Comments are closed.