|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
On Thu, May 11, 2006 at 04:29:42PM -0400, George Gallen wrote:
> ok. Is there a way to use tcpdump to show you the entire packet? and not
> just the headers.
First, set your snaplen to capture the entire packet with "-s 0".
In terms of "showing" the captured contents, it really depends what
protocol you're trying to examine, and what you want to see. If it's
text based, you can use "-xX" to display captured contents in hex and
ASCII. Or, if it's a more complicated protocol for which tcpdump has
a decoder, try using "-vvv" to put it in extremely verbose mode.
-mct
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug
|
|