Tcpdump cheat sheet: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
| Line 5: | Line 5: | ||
| | ||
=== Save packets to trace file on interface eth0: === | === Save packets to trace file on interface eth0 with the exclusion of SSH traffic: === | ||
<pre>tcpdump -i eth0 -s 0 -w <path> & | <pre>tcpdump -i eth0 -s 0 port not 22 -w <path> & | ||
</pre> | </pre> | ||
Revision as of 06:43, 9 May 2018
Display packtes from host on interface eth0:
tcpdump -i eth1 -vv host <IP-VSCOUT>
Save packets to trace file on interface eth0 with the exclusion of SSH traffic:
tcpdump -i eth0 -s 0 port not 22 -w <path> &
To stop:
<Enter>