Here is a little script that logs all http traffic, works great. My problem is that this is in an hourly cronjob, and the 'kill' line is producing this output:

/root/cronjobs/cap.sh: line 6: 1938 Killed /usr/sbin/tcpdump -nvi eth1 -s 0 src port 80 -X >&$filename

I am getting an email every hour because of this. I tried putting > /dev/null at the end but it still gives me this output. When I run the script on the command line, I do NOT get any output at all, so it's kinda difficult to troubleshoot.. How can I suppress this output?

kill -9 $cpid 2>&1 > /dev/null

Thanks, I have a test script working correctly now. But the production script still doesnt, and I cant see the difference between the 2. The working script runs in cron on the same server every minute. It's definitely creating the 10 second cap file, I'd never know except the file cap.txt is always within 1 minute of system time. The bit at the end of the non-working script just sends the hourly cap file to another server for parsing and databasing, and cleans up after itself.

Test script works, successfully suppresses output (email to root):
Production script still sends email to root:
email:
/root/r3cap/go: line 6: 32262 Killed /usr/sbin/tcpdump -nvi eth1 -s 0 src port 1812 or dst port 1812 or dst port 1813 or dst port 1813 -X >&$filename