Thursday, May 21, 2015

tcpdump wirte to screen and file

Basic form:
tcpdump -i interface OPTIONS -w - | tee outputFile | tcpdump -r -

-w - : write data to stdout
tee : write data to file and its own stdout
-r - : read data from stdin

Example:
tcpdump -i enp3s0 udp and port 53 -w - | tee packet.pcap | tcpdump -nn -r -

No comments:

Check clients which connect to Mac OS X Wi-Fi Internet Sharing

arp -i bridge100 -a bridge100 may be different on your Mac OSX