TCPDump Guide
https://danielmiessler.com/study/tcpdump/#src-dst-port
My latest command to look at DNS requests from network x.x.x.x/24 to IP address x.x.x.x
sudo tcpdump -G 2580000 -W 800 -i eth1 -tttt -w /path/to_file/dump.pcap port 53 and src net x.x.x.0/24 and dst x.x.x.x &
My latest command to look at DNS requests from network x.x.x.x/24 to IP address x.x.x.x
sudo tcpdump -G 2580000 -W 800 -i eth1 -tttt -w /path/to_file/dump.pcap port 53 and src net x.x.x.0/24 and dst x.x.x.x &
Comments
Post a Comment