| View previous topic :: View next topic |
| Author |
Message |
BadTA
n00b
Joined: 21 Feb 2005
Posts: 44
|
 Posted: Tue Mar 15, 2005 6:53 pm Post subject: Where is my snoop command? |
 |
|
I can't find the snoop command. Is there an equivalent command in Gentoo?
Thanks
Mark |
|
| Back to top |
|
 |
kashani
Advocate
Joined: 02 Sep 2002
Posts: 2032
Location: San Francisco
|
| Posted: Tue Mar 15, 2005 7:28 pm Post subject: |
|
|
My understanding is that snoop was a Solaris thing assuming you're talking about the command line packet capture utility. The closest Linux equivalent is tcpdump. It's basically the same, but the output will be a bit different. IIRC.
emerge tcpdump
kashani
_________________
Will personally fix your server in exchange for motorcycle related shop tools in good shape. |
|
| Back to top |
|
|
jklmnop
n00b
Joined: 18 Jun 2003
Posts: 42
|
| Posted: Tue Mar 15, 2005 8:29 pm Post subject: |
|
|
ethereal is a nice graphical 'snoop' equivalent, it has a text-only
version (tethereal) that with the -V option produces decoded
packets like snoop does.
| Code: |
gaz root # tethereal -V -c 1
Capturing on eth0
Frame 1 (178 bytes on wire, 178 bytes captured)
Arrival Time: Mar 15, 2005 12:25:11.246074000
Time delta from previous packet: 0.000000000 seconds
Time since reference or first frame: 0.000000000 seconds
Frame Number: 1
Packet Length: 178 bytes
Capture Length: 178 bytes
Ethernet II, Src: 00:0b:db:84:29:e4, Dst: 00:0f:1f:a7:2a:a7
Destination: 00:0f:1f:a7:2a:a7 (WwPcbaTe_a7:2a:a7)
Source: 00:0b:db:84:29:e4 (DellEsgP_84:29:e4)
Type: IP (0x0800)
Internet Protocol, Src Addr: 192.168.254.83 (192.168.254.83), Dst Addr: 192.168.254.31 (192.168.254.31)
Version: 4
Header length: 20 bytes
Differentiated Services Field: 0x10 (DSCP 0x04: Unknown DSCP; ECN: 0x00)
0001 00.. = Differentiated Services Codepoint: Unknown (0x04)
.... ..0. = ECN-Capable Transport (ECT): 0
.... ...0 = ECN-CE: 0
Total Length: 164
Identification: 0x7b6d (31597)
Flags: 0x04 (Don't Fragment)
0... = Reserved bit: Not set
.1.. = Don't fragment: Set
..0. = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: TCP (0x06)
Header checksum: 0x4112 (correct)
Source: 192.168.254.83 (192.168.254.83)
Destination: 192.168.254.31 (192.168.254.31)
Transmission Control Protocol, Src Port: ssh (22), Dst Port: 33107 (33107), Seq: 0, Ack: 0, Len: 112
Source port: ssh (22)
Destination port: 33107 (33107)
Sequence number: 0 (relative sequence number)
Next sequence number: 112 (relative sequence number)
Acknowledgement number: 0 (relative ack number)
Header length: 32 bytes
Flags: 0x0018 (PSH, ACK)
0... .... = Congestion Window Reduced (CWR): Not set
.0.. .... = ECN-Echo: Not set
..0. .... = Urgent: Not set
...1 .... = Acknowledgment: Set
.... 1... = Push: Set
.... .0.. = Reset: Not set
.... ..0. = Syn: Not set
.... ...0 = Fin: Not set
Window size: 8264
Checksum: 0x9ad4 (correct)
Options: (12 bytes)
NOP
NOP
Time stamp: tsval 938285147, tsecr 485200693
SSH Protocol
Encrypted Packet: 343B1D5B86B86F70F1A43C1BEE2FE93FCCC81BAF7EEC79CD...
1 packets captured
|
|
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Networking & Security
