![]() ![]() yum install wireshark (core, you can use the command tshark) First, install wireshark and install it directly through yum. We output it to a file and use wireshark to help us analyze the data packet. It is troublesome to output to the console when there are many data packets. View Image does not display the timestamp,īut this is more troublesome. (1) port 80: capture packets only capture port 80 (1) -i eth0: only capture packets passing through interface eth0 We can simply grab it and use it (note that you need to start tcpdump with root permissions) tcpdump -i eth0 port 80 -c 3 -t ![]() ![]() The filtering rule of tcpdump is to use bpf syntax If everything goes well, you can use tcpdump to capture packets. Then unzip tcpdump, and then enter the directory configuration installation. tar.gz.įirst unzip libpcap, then enter the directory configuration installation. We can download libpcap and tcpdump from the official website of tcpdump ( ) In addition, tcpdump is based on libpcap, which is not found in yum. If you have any questions or suggestions, please reply.Įmail: Centos 6.5, use tcpdump to capture packets and wireshark analysis packets to get a preliminary understanding of packet capture and unpackingįirst we have to install tcpdump, the necessary libraries: yum install flex Foreword Original articles are welcome to reprint, please keep the source. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |