common usage of tcpdump

Example

tcpdump -c ${package_number} -i eth0 -nn dst port ${PORT} -w FILE.packets

Usage

• -i interface
• -w write for file
• -c count
• -A prints out every packet’s contents
• -n By default tcpdump will translate IP addresses to host names. -n forces it to just print the IP
• -e Includes the MAC address that the packet came from
• -p Filters to only packets to/from your computer’s IP address

TCP Control Flag

Reference

• https://wizardzines.com/zines/tcpdump/