'tcpdump'에 해당하는 글 1건

-w file
-i interface
-e print the link-level header on each dump line.

tcpdump host x.x.x.x or host x.x.x.x


[root@oracle self]# tcpdump host 112.x.x.x
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes


14:55:03.769016 IP 112.x.x.x.58114 > xxx.xxx.net.sunrpc: S 2692676710:2692676710(0) win 5840 <mss 1460,sackOK,timestamp 238192638 0,nop,wscale 6>
14:55:03.774083 IP xxx.xxx.net.sunrpc > 112.x.x.x.58114: R 0:0(0) ack 2692676711 win 0




[byoungguk:월  2월 07 14:51:49 @~]$ telnet x.x.x.x111
Trying x.x.x.x...
telnet: Unable to connect to remote host: Connection refused
[byoungguk:월  2월 07 14:51:58 @~]$ 


신고

WRITTEN BY
김병국
유용했던 자료를 기록해 두었습니다. 도움이 되시길~~~ Welcome! I started this blog as a way to give back to all of the other system administrators who have taught me something in the past. Writing these posts brings me a lot of enjoyment and I hope you fun

받은 트랙백이 없고 , 댓글 하나 달렸습니다.
  1. [root@byoungguk ~]# tcpdump -v src 10.0.0.81
    tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes
    12:50:32.251492 IP (tos 0x0, ttl 128, id 1109, offset 0, flags [DF], proto 6, length: 40) 10.0.0.81.1937 > linuxtip.net.ssh: . [tcp sum ok] ack 1767424339 win 64235
    12:50:32.397142 IP (tos 0x0, ttl 128, id 1110, offset 0, flags [DF], proto 6, length: 40) 10.0.0.81.1937 > linuxtip.net.ssh: . [tcp sum ok] ack 117 win 64119
    12:50:32.597765 IP (tos 0x0, ttl 128, id 1111, offset 0, flags [DF], proto 6, length: 40) 10.0.0.81.1937 > linuxtip.net.ssh: . [tcp sum ok] ack 489 win 65535
    12:50:32.797320 IP (tos 0x0, ttl 128, id 1112, offset 0, flags [DF], proto 6, length: 40) 10.0.0.81.1937 > linuxtip.net.ssh: . [tcp sum ok] ack 701 win 65323
    12:50:32.999001 IP (tos 0x0, ttl 128, id 1113, offset 0, flags [DF], proto 6, length: 40) 10.0.0.81.1937 > linuxtip.net.ssh: . [tcp sum ok] ack 913 win 65111
secret