實用技巧

通用語法

條件語法:

==
!=
>
<
>=
<=
in

邏輯語法:

&&  # AND
||      # OR
!       # NOT

常用篩選:

SIP 相關

tcpdump

timeout 6m tcpdump -i eth0 host <sip-trunk-ip> -n -s 0 -vvvv  -w carrier.pcap

Wireshark

只顯示 REGISTER 行,Filter: sip.CSeq.method == REGISTER 

其他

遠端監聽指令

ssh root@192.168.0.1 tcpdump -n -i any -w- 'not \( port 22 and host 192.168.0.1 \)' |etherape -r-
Filter 速查表

wireshark_filter.jpeg

Wireshark.png

Revision #10
Created 28 May 2022 13:15:18 by Admin
Updated 15 September 2023 13:10:28 by Admin