Reply in-line :-
On Tue, Jan 27, 2009 at 10:36, Mehul Ved mehul.n.ved@gmail.com wrote:
On Tue, Jan 27, 2009 at 10:01 AM, shirish shirishag75@gmail.com wrote:
Hi Steve, sorry for jumping on the thread. I am on kernel 2.6.27 and there is a big possibility I haven't really understood your command.
You gave
tcpdump -s0 -w <output>.cap host <youripaddress>
I used :-
tcpdump -s0 -w output.cap host 59.95.28.28
(ouput.cap most probably is a file-name and the IP Address is the IP Address being assigned by my provider)
but both for this I get
tcpdump: no suitable device found
Did you try it as root? I tried the same comand as root and non-root. Got the same error as you have got, when run as non-root. Worked when done as root.
Hi Mehul, Thanks for replying. Got it working, had to modify the command just a bit.
$ sudo tcpdump -s0 -i eth1 -w output.cap host 59.95.28.28 tcpdump: listening on eth1, link-type EN10MB (Ethernet), capture size 65535 bytes ^C34 packets captured 36 packets received by filter 0 packets dropped by kernel
Then ran wireshark on output.cap and was able to see the results.
It is a pretty good tool. Trying to find more about the same.
--
"I once witnessed a long-winded, month-long flamewar over the use of mice vs. trackballs...It...