Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hi,
I am new to networking, and I was ask to do a tcpdump on a certain source and destination. I have executed this command successfully. The output file processed in ethereal software so I could get the full details. But since I'm new with this one. I don't undertand that much.
specially the line (Packet size limited during capture). THis appearred on both source and destination.Below are sample tcpdump ooutput file. Please help me, I'm kinda stuck on this one. Thanks
Source DST Protocol Info
205.135.86.25 69.180.85.26 SIP Request: INVITE sip:0118521236547@69.180.85.26[Packet size limited during capture]
205.135.86.25 69.180.85.26 SIP Request: OPTIONS sip:69.180.85.26[Packet size limited during capture]
69.180.85.26 205.135.86.25 SIP Status: 100 Trying[Packet size limited during capture]
69.180.85.26 205.135.86.25 SIP Status: 200 Ok [Packet size limited during capture]
69.180.85.26 205.135.86.25 SIP Status: 183 Ok [Packet size limited during capture]
69.180.85.26 205.135.86.25 SIP Status: 200 OK[Packet size limited during capture]
205.135.86.25 69.180.85.26 SIP Request: ACK sip: 0118521236547@69.180.85.26[Packet size limited during capture]
well what do you want to know? you have the source IP followed by the destination IP. then it's the protocol, SIP, then the SIP specific details, status code etc... not much else to tell you to be honest. if you check the wireshark wiki you can get sample captures of all sorts of traffic, like SIP including deliberate errors etc... at the SIP level though, it's up to you to understand the protocols in place, based on reference books etc... wireshark as a program is very useful to scrape out extra details from a tcpdump file. note of course that those packets are sizse limited, so only of a certian use, add "-s0" to the tcpdump command line to capture 100% of the data.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.