tcpdump problem
Peter Matulis
petermatulis at yahoo.ca
Mon Sep 12 01:00:14 PDT 2005
You do not have "all the details" with ethereal. That's because you are *telling* tcpdump not
to sniff them. You are instructing it to take just the headers with the '-s' switch (zero
payload: -s0). Try 1500 instead of 0 and you will get what you desire.
--
Peter
--- bannour souha <sou_bann at yahoo.fr> wrote:
>
> Hello,
>
> I am working on PPPoE. I use FreeBSD 5.3.
> I want to capture packets from the interfaces eth and
> ppp. I used for that this command "tcpdump -e -i rl0
> -n -s0 -w /home/dump_eth"
> when I analyse the packets with ethereal, I have all
> details, but when I read the content of the file
> "dump_eth" with the command "tcpdump -r dump_zth", I
> haven't the whole packet, that's mean, I obtain all
> the information but I don't obtain the data.
> Have you some idea? I want to have the content of the
> packets in hexa to use it in my work.
> Can you help me please?
>
> many thanks,
> Souha
>
>
>
>
>
>
> ___________________________________________________________________________
> Appel audio GRATUIT partout dans le monde avec le nouveau Yahoo! Messenger
> Téléchargez cette version sur http://fr.messenger.yahoo.com
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
>
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
More information about the freebsd-questions
mailing list