TCP DUMP

※ -i : Dump 대상 인터페이스 / -vv : 수집 level / -w : Log 생성

※ 192.168.10.30 - 목적지 시스템 

[root@TestWEB01  ~]# [root@TestWEB01  ~]# [root@TestWEB01  ~]# tcpdump -vv -i eth0 -w tcpdump.`date +%Y%m%d_%H%M%S`.log tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes 14 packets captured 14 packets received by filter 0 packets dropped by kernel [root@TestWEB01  ~]# [root@TestWEB01  ~]# [root@TestWEB01  ~]# [root@TestWEB01  ~]# ls -lrt ./tcpdump* -rw-r--r-- 1 root root 1376  3월  5 15:03 ./tcpdump.20140305_150257.log [root@TestWEB01  ~]# [root@TestWEB01  ~]# [root@TestWEB01  ~]# [root@TestWEB01 ~]# [root@TestWEB01 ~]# [root@TestWEB01 ~]# tcpdump -w tcpdump.log -i eth0 -s 1500 tcp port 8080 and host 192.168.10.30 tcpdump: listening on eth1, link-type EN10MB (Ethernet), capture size 1500 bytes 1355 packets captured 1360 packets received by filter 0 packets dropped by kernel [root@TestWEB01 ~]# [root@TestWEB01 ~]#