Date: Wed, 30 Jul 1997 19:43:44 -0000 (GMT) From: mark@intervista.net To: grog@FreeBSD.ORG Cc: questions@FreeBSD.ORG Subject: Re: tcptrace. Message-ID: <XFMail.970730194424.mark@intervista.net> In-Reply-To: <199707300735.RAA00756@freebie.lemis.com>
next in thread | previous in thread | raw e-mail | index | archive | help
yeah i knew that.but i was told that tcptrace will parce the packets and show all traffic,such as finger attemps and things like that. On 30-Jul-97 grog@FreeBSD.ORG wrote: >mark@intervista.net writes: >> i was wondering if anyone knows where to get tcptrace.i had the >> website and i forgot the address! > >I suspect part of the problem is that you've forgotten the name of the >packet, too. I think you're talking about tcpdump. It's part of the >FreeBSD distribution, so you don't need to go looking for it. > >> what exacly will tcptrace do.does it parce the packets and show >> ALL activities and network traffic? > >If you want. More importantly, you can give it search expression >which show only the stuff you're interested in. > >For example, if I want to see what's going on between here and >hub.freebsd.org, I can enter: > ># tcpdump -i tun0 host hub.freebsd.org >tcpdump: listening on tun0 >17:04:45.184501 gregl1.lnk.telstra.net.1020 > hub.FreeBSD.ORG.login: P >705673731:705673732(1) ack 919555097 win 17520 (DF) [tos 0x10] >17:04:45.600277 hub.FreeBSD.ORG.login > gregl1.lnk.telstra.net.1020: P 1:3(2) >ack 1 win 17520 (DF) [tos 0x10] >17:04:45.760109 gregl1.lnk.telstra.net.1020 > hub.FreeBSD.ORG.login: . ack 3 >win 17520 (DF) [tos 0x10] >17:04:47.950705 hub.FreeBSD.ORG.login > gregl1.lnk.telstra.net.1020: P >3:55(52) ack 1 win 17520 (DF) [tos 0x10] >17:04:47.960150 gregl1.lnk.telstra.net.1020 > hub.FreeBSD.ORG.login: . ack 55 >win 17520 (DF) [tos 0x10] >17:04:50.120960 gregl1.lnk.telstra.net.1020 > hub.FreeBSD.ORG.login: P 1:2(1) >ack 55 win 17520 (DF) [tos 0x10] >17:04:50.570342 hub.FreeBSD.ORG.login > gregl1.lnk.telstra.net.1020: P >55:63(8) ack 2 win 17520 (DF) [tos 0x10] > >This is part of an interactive rlogin session (thus the port login on >hub). The -i option specifies the interface which you want to >monitor. > >Greg -----BEGIN PGP PUBLIC KEY BLOCK----- Version: 2.6.3i mQENAzPd8zoAAAEIAO1IwLUXOTxtP7jePcqVJK0HyntvI1GEcz7kgixmt7M9LlSQ 9l+VHq3cVbsLQ+00G+kAgBn9rcQoZzMAnUEzvMjPl8LfO9nZZsfORYnS22Lz+k7c 03ybV0VOKRQHbfbjrnqKPx9aW476LTJfbDfueb1agV23b0CifxRfYVacYDkzRTl4 CqrDGtkhBgtK9pEq262fuRtieEFgffn3jUxMXkUIYCwUpj3cGLF9h3dxTrcys6yQ xpefwZSY3ynQvcvvQtwcSUrwAdDADsgtoIFel10OHjmEADYbKOdxD6GPRQYfBuyx DaIjVGj7Y5/tpUUxcO7VqervUhu2+VmwEKkWbikABROwAYe0BG1hcmuwAQOJARUD BRAz3fM6+VmwEKkWbikBAcLXB/4trFARnGwUC2JdF5mwrDBxKcmW4OLCCJl7Ea3R J6uND+JLTw6RTxfZd/FNnCFUSMl3ybDcefxgwxM41Ss6vrHsBco0MXAAntoXonsm Ph3ipYsJCNNFbqVCG+2NfNXOiTUgWlTr4lWuGH/y9073q6Ak4t/im1fR5cVD+6vZ hNkfJzYCcRTZqKkPTX1Z04BZryHyGVEy35DihoKnmPF58D8VYuc2eEymPa6Aq0O+ 5slcSXvn4MbpYbnoPFGRbSxDjrAHkKR3uqtYTXiiTvPaccC+hp0Icyw/owfuovXs INtUpbsqZaEY5EEJAqDaFfK7G2Vgrwfxs1U7/eKqRyQhV9cfsAHH =Zptm -----END PGP PUBLIC KEY BLOCK-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?XFMail.970730194424.mark>