how can I dump only outgoing IP packets in tcpdump? -


i'm dumping outgoing traffic. want tcp , udp packets destined outside lan, nothing else. used following filter tcpdump:

ip , (tcp or udp) , (not icmp) , src host myipaddr , not dst net mynet/mynetbits , not ip broadcast

but captured following packet:

###[ ethernet ]###   dst       = ff:ff:ff:ff:ff:ff   src       = 00:1e:4a:e0:9e:00   type      = 0x806 ###[ arp ]###      hwtype    = 0x1      ptype     = 0x800      hwlen     = 6      plen      = 4      op        = who-has      hwsrc     = 00:1e:4a:e0:9e:00      psrc      = x.x.x.x      hwdst     = 00:00:00:00:00:00      pdst      = y.y.y.y ###[ padding ]###         load      = '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'

what happened here? thought dumping only ip packets.

from looking @ dump received arp packet ip protocol type (i.e. ptype = 0x800). should filter out arp packets and (not arp) , should cleanup dump. think if @ tcpdump code find reason why keeps these specific arp packets (but since ip uses these packets network resolution guess these arp packets considered part of ip tcpdump).

kind regards,
bo


Comments

Post a Comment

Popular posts from this blog

jquery - Invalid Assignment Left-Hand Side -

i trying assign class tag via jquery, resulting in error through firebug says "invalid assignment left-hand side" on fourth line below. <cfoutput> $('.pngfix a').each(function(index) { var hreflink = $(this).attr("href"); if (hreflink.tolowercase() = '../audio.cfm') { $(this).addclass('audioimg'); } }); </cfoutput> looking around online, looks syntax problem, don't seem see it... any tips? thanks if (hreflink.tolowercase() = '../audio.cfm') that attempts assign value, rather check equality. change = operator == .
Read more

java - Play! framework 2.0: How to display multiple image? -

i need display gallery of photos. here template: @(photos: list[photo]) @title = { <bold>gallery</bold> } @main(title,"photo"){ <ul class="thumbnails"> @for(photo <- photos) { <li class="span3"> <a href="#" class="thumbnail"> <img src="@photo.path" alt=""> </a> </li> } </ul> } and here controller method: public static result getphotos() { return ok(views.html.photo.gallery.render(photo.get())); } and here photo bean : @entity public class photo extends model { @id public long id; @required public string label; public string path; public photo(string path, string label) { this.path = path; this.label = label; } private static finder<long, photo> find = new finder<long, photo>( long.class, photo.class); public static list<phot...
Read more

gmail - Is there any documentation for read-only access to the Google Contacts API? -

i want read-only access user's google contacts. there stackoverflow member wanted this, , received following answer : yes, there is, use https://www.googleapis.com/auth/contacts.readonly scope , "view contacts". this exchange reference read-only access google contacts can find using google. simply using access token obtained attempt read usual google contacts api (i.e. https://www.google.com/m8/feeds ) fails insufficient permissions. similarly, using google contacts api on new target fails 404 errors (for example https://www.googleapis.com/auth/contacts.readonly/default/full ). is there documentation anywhere on how use api, or permissible way access google contacts api full read-write access?
Read more