浏览此站
联系我们相册切换到窄版 Language

 找回密码
 注册
易陆发现论坛»论坛 操作系统区 应用网络 Linux操作系统虚拟网络 tcpdump 抓包
返回列表 发新帖
查看: 7668|回复: 7

tcpdump 抓包

[复制链接]
admin

1

主题

0

回帖

12

积分

管理员

积分
12
QQ
发表于 2018-12-12 20:02:59 | 显示全部楼层 |阅读模式
sudo tcpdump -i bond1.104 -v -vv -t   
! A) [4 z, L: M3 J! Z
1 _5 E7 l- O- s& W( y. E6 T3 @& v! }: x* {' O/ z& M0 B( }5 U
sudo tcpdump -i ens1f0 -vv -w /tmp/ens1f0.cap     抓包写如文件中
% s( C5 \$ L6 O* b; _
回复

举报

admin

1

主题

0

回帖

12

积分

管理员

积分
12
QQ
 楼主| 发表于 2018-12-13 15:01:49 | 显示全部楼层
sudo tcpdump -i bond1.104 -vvv -t ; r8 X: w# T* ^6 B  A
tcpdump: WARNING: bond1.104: no IPv4 address assigned
+ Z2 W7 Y' Y! D7 J* {1 S& f( _' dtcpdump: listening on bond1.104, link-type EN10MB (Ethernet), capture size 65535 bytes
/ T/ b% |+ x, lIP (tos 0x0, ttl 64, id 18437, offset 0, flags [DF], proto ICMP (1), length 84)
. I8 t- _4 R" |4 V- w    CD--6 > 10.64.35.100: ICMP echo request, id 7024, seq 437, length 648 A/ S3 d$ @0 q% n8 m, F
IP (tos 0x0, ttl 64, id 18437, offset 0, flags [DF], proto ICMP (1), length 84)
. J6 L% ^8 ], s  X! Y" S7 r    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 437, length 64
0 W$ B& i" [- q+ ^- X0 P$ [IP (tos 0x0, ttl 64, id 18696, offset 0, flags [DF], proto ICMP (1), length 84)
& Q& n4 w8 E7 t+ W    CD--6 > 10.4.5.100: ICMP echo request, id 7024, seq 438, length 64
& H- l3 B7 I& J2 OIP (tos 0x0, ttl 64, id 18696, offset 0, flags [DF], proto ICMP (1), length 84)
; t0 Q3 A$ y' [. ]4 ]# k) G    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 438, length 64
6 G/ |" L. L. ?: qIP (tos 0x0, ttl 64, id 18958, offset 0, flags [DF], proto ICMP (1), length 84)7 W8 z, B( }8 R- h
    CD--6 > 10.4.5.100: ICMP echo request, id 7024, seq 439, length 64
  K7 ^3 n2 d5 e4 c9 d% DIP (tos 0x0, ttl 64, id 18958, offset 0, flags [DF], proto ICMP (1), length 84)
3 ^# y. A3 Q# Z    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 439, length 64
* L7 e. C8 h! M5 \& G  I5 MIP (tos 0x0, ttl 64, id 19338, offset 0, flags [DF], proto ICMP (1), length 84)
1 S  i2 r8 c7 c* z: [4 C% q0 j    CD--6 > 10.64.35.100: ICMP echo request, id 7024, seq 440, length 641 N" L; P' d# ^/ y* E
IP (tos 0x0, ttl 64, id 19338, offset 0, flags [DF], proto ICMP (1), length 84), ~* _; J4 n0 \" X4 e1 I4 M2 U
    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 440, length 64
回复

举报

admin01 该用户已被删除
发表于 2018-12-14 18:13:01 | 显示全部楼层
提示: 作者被禁止或删除 内容自动屏蔽
回复

举报

1320503165

70

主题

73

回帖

1201

积分

网站编辑

积分
1201
发表于 2018-12-14 18:15:28 | 显示全部楼层
sudo  tcpdump -i vnet7 -vv -e icmp   抓取vnet7子接口地址
回复

举报

admin

1

主题

0

回帖

12

积分

管理员

积分
12
QQ
 楼主| 发表于 2018-12-24 16:20:40 | 显示全部楼层
sudo tcpdump -i bond1 -vv icmp  
; b% O1 e! s4 Y5 X; dtcpdump: WARNING: bond1: no IPv4 address assigned: W/ z( D  x' d: Z% j* s( E
tcpdump: listening on bond1, link-type EN10MB (Ethernet), capture size 65535 bytes& e6 A! X. ]% ?! _% y: I
16:16:57.141135 IP (tos 0x0, ttl 62, id 52282, offset 0, flags [DF], proto ICMP (1), length 84)! y, l: x9 Y  A2 \
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1157, length 64
8 S/ Z: _  \! ?0 ?/ y16:16:58.141200 IP (tos 0x0, ttl 62, id 52414, offset 0, flags [DF], proto ICMP (1), length 84)
$ ~5 T1 H: P: `5 J7 t    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1158, length 64
3 T0 h. B) k( f$ @16:16:59.141214 IP (tos 0x0, ttl 62, id 53243, offset 0, flags [DF], proto ICMP (1), length 84)
5 ]" K% }" p1 o7 ]# ?    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1159, length 64! ?4 Y( s; q! n: c) Z9 \
16:17:00.141085 IP (tos 0x0, ttl 62, id 53622, offset 0, flags [DF], proto ICMP (1), length 84)5 J7 e6 }+ f  J) S$ e
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1160, length 64
回复

举报

admin

1

主题

0

回帖

12

积分

管理员

积分
12
QQ
 楼主| 发表于 2018-12-24 16:22:16 | 显示全部楼层
sudo tcpdump -i bond1 -vv -e icmp  ) G# Q8 o5 ~) M4 ~# h3 K
tcpdump: WARNING: bond1: no IPv4 address assigned* E* o2 S% c; ?: i- e5 X* h
tcpdump: listening on bond1, link-type EN10MB (Ethernet), capture size 65535 bytes
, }3 b' r7 B+ Z( h! s16:21:23.140673 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 47732, offset 0, flags [DF], proto ICMP (1), length 84)9 \8 o, L: N; q, t! ^

1 ?. k. l+ k+ h  k' g5 D9 F+ j! s5 l* p+ m

  y' U) L0 S; h9 O4 \& T: X! L1 u8 ?    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1423, length 64
! ~, Z6 X4 d7 c& a) w* b. u8 X! ]- \  N16:21:24.140663 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 47779, offset 0, flags [DF], proto ICMP (1), length 84)0 O; Y( ^! |4 q& l8 k* t' F
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1424, length 64- |1 L6 _& f, k7 [! B+ b- |
16:21:25.140651 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 48122, offset 0, flags [DF], proto ICMP (1), length 84)
8 O' G, ?5 b% ~7 ~' L4 @    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1425, length 64
+ t. @$ c! P& s! i8 c9 P# d: W16:21:26.140629 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 48938, offset 0, flags [DF], proto ICMP (1), length 84)
9 g+ v* s4 F4 M" l: G    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1426, length 64& Q$ R4 |+ f4 s5 n
16:21:27.140613 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 49679, offset 0, flags [DF], proto ICMP (1), length 84)9 I8 [/ U8 z; A# r2 T' z
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1427, length 64! w: [9 j( |! ?% y1 ^! z* J' Y
16:21:28.140616 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 50377, offset 0, flags [DF], proto ICMP (1), length 84)
3 w% M2 {0 q" U7 e: X6 _    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1428, length 64
+ W0 N- [0 g3 C16:21:29.140633 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 50603, offset 0, flags [DF], proto ICMP (1), length 84)" v& x2 G6 y" U/ @- J+ A/ k
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1429, length 64
- f, ?" A/ X% ^! @6 L- ]2 Q; j! J16:21:30.140614 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 51285, offset 0, flags [DF], proto ICMP (1), length 84)
回复

举报

admin

1

主题

0

回帖

12

积分

管理员

积分
12
QQ
 楼主| 发表于 2018-12-24 16:22:34 | 显示全部楼层
sudo tcpdump -i bond1 -vvv -e icmp  $ U7 Q( q; m$ G  I, e( G
tcpdump: WARNING: bond1: no IPv4 address assigned
9 j" q$ l  f7 _1 H/ d1 Ttcpdump: listening on bond1, link-type EN10MB (Ethernet), capture size 65535 bytes
6 c4 V# g! \. `* K3 o. U/ S, e% c+ k16:22:01.140593 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 1576, offset 0, flags [DF], proto ICMP (1), length 84)
5 o) _. ^& L+ P% }( Q% b    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1461, length 64
# R! c( M# }( X% N  K8 ?/ ?16:22:02.140601 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 1841, offset 0, flags [DF], proto ICMP (1), length 84)! }3 y' [/ L& t8 t
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1462, length 64
. u5 e) ~+ e. z4 M; w+ [2 Z16:22:03.140606 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 2688, offset 0, flags [DF], proto ICMP (1), length 84)
; e6 i& R4 Q$ Z1 w% l1 W    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1463, length 64
0 b* u7 S3 X  h1 @1 J5 I16:22:04.140584 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 3273, offset 0, flags [DF], proto ICMP (1), length 84). a8 t* {7 u( L) f+ G( F
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1464, length 64
+ j! v5 b7 r6 @% W6 E$ f: I16:22:05.140544 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 3297, offset 0, flags [DF], proto ICMP (1), length 84)
& Y9 u: `. |7 W$ _" e    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1465, length 64
3 w! P1 |- @; y# c" @. j; \16:22:06.140605 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 3547, offset 0, flags [DF], proto ICMP (1), length 84)
回复

举报

admin

1

主题

0

回帖

12

积分

管理员

积分
12
QQ
 楼主| 发表于 2018-12-24 18:49:19 | 显示全部楼层
sudo tcpdump  -i  tapa72cc152-ce -w 43.240.248.70.cap
回复

举报

返回列表 发新帖
高级模式
B Color Image Link Quote Code Smilies
您需要登录后才可以回帖 登录 | 注册

本版积分规则

返回首页|Archiver|手机版|小黑屋|易陆发现技术论坛 ( 蜀ICP备2026014127号-1 )

GMT+8, 2026-6-12 02:37 , Processed in 0.020014 second(s), 21 queries .

Powered by Discuz! X5.0

© 2001-2026 Discuz! Team.

快速回复 返回顶部 返回列表