tcpdump question

Mon Mar 21 10:04:26 PST 2005

Hi everyone!

I've run a tcpdump on my FreeBSD-5.3 machine which is connected via
DSL connection (with fix IP add) passing through a DSL modem. I see
the following weird output, and Im wondering where does the
"192.168.2.1" came from if I disconnected the LAN from my BSD machine.

01:59:04.157465 IP 192.168.2.1 > ALL-SYSTEMS.MCAST.NET: igmp query v2
01:59:04.157587 IP 192.168.2.1 > ALL-SYSTEMS.MCAST.NET: igmp query v2
01:59:04.318834 IP 192.168.2.1 > RIP2-ROUTERS.MCAST.NET: igmp v2
report RIP2-ROUTERS.MCAST.NET
01:59:04.318875 IP 192.168.2.1 > 239.255.255.250: igmp v2 report 239.255.255.250
01:59:28.374428 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 306
01:59:28.374725 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 308
01:59:28.375012 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 318
01:59:28.375295 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 312
01:59:28.375558 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 253
01:59:28.375838 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 324
01:59:28.376114 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 292
01:59:28.376368 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 253
01:59:28.376651 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 308
01:59:28.376929 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 298
01:59:28.377213 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 316
01:59:28.377475 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 253
01:59:28.377733 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 244
01:59:29.383863 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 306
01:59:29.384153 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 308
01:59:29.384437 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 318
01:59:29.384719 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 312
01:59:29.384975 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 253
01:59:29.385254 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 324
01:59:29.385516 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 292
01:59:29.385771 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 253
01:59:29.386042 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 308
01:59:29.386321 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 298
01:59:29.386606 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 316
01:59:29.386864 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 253
01:59:29.387112 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 244
01:59:30.393338 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 306
01:59:30.393613 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 308
01:59:30.393944 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 318
01:59:30.394167 IP 192.168.2.1.1900 > 239.255.255.250.1900: UDP, length: 312

Another one, is there a GUI to visualize properly the output of
tcpdump? I mean a GUI which can be run as separate X Window
application whose job is to tabulate and display the output of tcpdump
in a human-readable form.

Thanks!
-Edwin

-- 
--
Edwin D. Viñas
http://www.geocities.com/edwin_vinas/
IN THE WORLD OF SCIENCE,
NOTHING IS IMPOSSIBLE.
--