Skip to main content

tcpdump

Capture All traffic

tcpdump -i eth0

Save Captured Traffic to a File

tcpdump -i eth0 -w capture.pcap

Display Captured Traffic

tcpdump -r capture.pcap

 

Monitor SSH connections

# -l: real-time
# -e: including ethernet headers
tcpdump -i eth0 'tcp port 22' -l -e

Back to top