tcpdump
Posted: Wed May 02, 2012 4:42 pm
Because Actiontek WI424WR is blocking SSH/MySQL outgoing traffic, I set up tcpdump to capture the packet information. I had used snoop to capture some information before but I couldn't decipher and Actiontek did not respond to me either.
Here is what I did with tcpdump:
Capture SSH traffic between hsiao.net and nd223008.global.medtronic.com:
Read the output:
The output is very much like snoop output, I still can't tell what information is in it and how I decipher the information.
Here is what I did with tcpdump:
Capture SSH traffic between hsiao.net and nd223008.global.medtronic.com:
Code: Select all
% tcpdump -w tcpdump.out -i net1 'tcp port 22 and host hsiao.net and nd223008.global.medtronic.com'Code: Select all
% tcpdump -XX -r tcpdump.out