易陆发现论坛

 找回密码
 开始注册
查看: 1399|回复: 7
收起左侧

tcpdump 抓包

[复制链接]
发表于 2018-12-12 20:02:59 | 显示全部楼层 |阅读模式

马上注册,结交更多好友,享用更多功能,让你轻松玩转社区。

您需要 登录 才可以下载或查看,没有帐号?开始注册

x
sudo tcpdump -i bond1.104 -v -vv -t   2 a# P8 {3 ~$ t

( Y$ V: {" m$ \, `1 z3 F1 {, b3 X+ z8 m7 ]( m/ c5 V& X$ S
sudo tcpdump -i ens1f0 -vv -w /tmp/ens1f0.cap     抓包写如文件中3 f* {% \8 b) r7 s5 T2 D
 楼主| 发表于 2018-12-13 15:01:49 | 显示全部楼层
sudo tcpdump -i bond1.104 -vvv -t " ]' T% G; R1 n
tcpdump: WARNING: bond1.104: no IPv4 address assigned# C5 z* `9 G& N: B$ w
tcpdump: listening on bond1.104, link-type EN10MB (Ethernet), capture size 65535 bytes; M9 F* A; A3 w5 h# o1 s) |
IP (tos 0x0, ttl 64, id 18437, offset 0, flags [DF], proto ICMP (1), length 84); x( z: G; i: N% u
    CD--6 > 10.64.35.100: ICMP echo request, id 7024, seq 437, length 64
; Z/ Z. {$ X; XIP (tos 0x0, ttl 64, id 18437, offset 0, flags [DF], proto ICMP (1), length 84)
, h2 u! e+ G5 n# Q* N. g4 }7 t    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 437, length 64
  v# K& n7 \0 n7 ]- DIP (tos 0x0, ttl 64, id 18696, offset 0, flags [DF], proto ICMP (1), length 84)' i, y% C% Y+ A3 G8 q
    CD--6 > 10.4.5.100: ICMP echo request, id 7024, seq 438, length 64- f8 @8 o% K1 B6 Y
IP (tos 0x0, ttl 64, id 18696, offset 0, flags [DF], proto ICMP (1), length 84)
( S# F* s, ?. E; e8 H: k    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 438, length 64  a/ S( r: A2 J+ g+ C8 p2 o$ E# H
IP (tos 0x0, ttl 64, id 18958, offset 0, flags [DF], proto ICMP (1), length 84)  V0 V2 c) \( Z: X% u, S
    CD--6 > 10.4.5.100: ICMP echo request, id 7024, seq 439, length 64
) z4 ^8 ~: u, Y1 {& P; eIP (tos 0x0, ttl 64, id 18958, offset 0, flags [DF], proto ICMP (1), length 84)
* H% a! ^1 }1 |7 i    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 439, length 64! P! C3 P3 c0 j) ~* n, h* ^
IP (tos 0x0, ttl 64, id 19338, offset 0, flags [DF], proto ICMP (1), length 84)
0 [  s7 Z0 P4 f4 m. M    CD--6 > 10.64.35.100: ICMP echo request, id 7024, seq 440, length 64& L" l* f7 G. j5 Y3 h5 G0 i/ R! D5 o
IP (tos 0x0, ttl 64, id 19338, offset 0, flags [DF], proto ICMP (1), length 84)1 w+ f6 u) L: ^$ B& J' j% B0 f
    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 440, length 64
发表于 2018-12-14 18:13:01 | 显示全部楼层
sudo tcpdump -i bond1 -vv -e icmp  抓取ICMP包。
发表于 2018-12-14 18:15:28 | 显示全部楼层
sudo  tcpdump -i vnet7 -vv -e icmp   抓取vnet7子接口地址
 楼主| 发表于 2018-12-24 16:20:40 | 显示全部楼层
sudo tcpdump -i bond1 -vv icmp  + O! O3 l/ K" D
tcpdump: WARNING: bond1: no IPv4 address assigned5 R; M8 K5 {- T, `. b
tcpdump: listening on bond1, link-type EN10MB (Ethernet), capture size 65535 bytes
/ y$ V4 e* r' x6 ~; c16:16:57.141135 IP (tos 0x0, ttl 62, id 52282, offset 0, flags [DF], proto ICMP (1), length 84)9 Q0 z8 ^* W' q6 }/ k
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1157, length 64  o0 v' T6 W- Q$ u2 P) d" K5 |
16:16:58.141200 IP (tos 0x0, ttl 62, id 52414, offset 0, flags [DF], proto ICMP (1), length 84); }/ I. N( W6 p- w- I: p
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1158, length 64& ?/ t. \* D' ^
16:16:59.141214 IP (tos 0x0, ttl 62, id 53243, offset 0, flags [DF], proto ICMP (1), length 84)  Z' n3 P5 M+ a$ N) P2 }
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1159, length 640 B1 t# A3 \7 z1 |3 d+ W7 X
16:17:00.141085 IP (tos 0x0, ttl 62, id 53622, offset 0, flags [DF], proto ICMP (1), length 84): T* w) v, D# @" Y; V4 t
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1160, length 64
 楼主| 发表于 2018-12-24 16:22:16 | 显示全部楼层
sudo tcpdump -i bond1 -vv -e icmp  
% c# z. k8 c  I9 vtcpdump: WARNING: bond1: no IPv4 address assigned5 k, e, ?6 W0 t0 Q  b
tcpdump: listening on bond1, link-type EN10MB (Ethernet), capture size 65535 bytes4 m  s! e* K6 M: k. s
16:21:23.140673 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 47732, offset 0, flags [DF], proto ICMP (1), length 84)
1 ?% Q0 b2 r2 I+ z& A
9 y" k3 A3 e: c  o
7 p* [9 ~8 H5 r( F0 Y/ y6 [
. U) I% I* _- V& s    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1423, length 64
8 x6 [6 t  c7 O1 t. @' ^16:21:24.140663 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 47779, offset 0, flags [DF], proto ICMP (1), length 84): a' h) g9 U" j/ }8 e
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1424, length 64
, G$ T% f. |$ q$ n16:21:25.140651 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 48122, offset 0, flags [DF], proto ICMP (1), length 84)
+ K' l5 G  g$ P: a7 [    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1425, length 648 a  ^3 N+ K8 O' ]6 Q- G1 ^+ J$ n
16:21:26.140629 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 48938, offset 0, flags [DF], proto ICMP (1), length 84)
% \) \; @1 A1 s. a; I    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1426, length 64
, ]) k% \, Y! `  \16:21:27.140613 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 49679, offset 0, flags [DF], proto ICMP (1), length 84)
3 j0 ^' ]6 N: Q3 x4 Q8 g$ n+ ^    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1427, length 64
/ h( N0 c- ?, ^4 f9 T" n6 a16:21:28.140616 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 50377, offset 0, flags [DF], proto ICMP (1), length 84)
; Z2 V7 k. \4 D8 @+ B/ U    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1428, length 64, g) T, e' N* [6 G" g, D
16:21:29.140633 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 50603, offset 0, flags [DF], proto ICMP (1), length 84)  t" ^. C3 a: J* `
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1429, length 64
2 C9 ]4 A6 J& ^16:21:30.140614 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 51285, offset 0, flags [DF], proto ICMP (1), length 84)
 楼主| 发表于 2018-12-24 16:22:34 | 显示全部楼层
sudo tcpdump -i bond1 -vvv -e icmp  / a% j9 b) c$ J4 _, [2 {
tcpdump: WARNING: bond1: no IPv4 address assigned2 k8 q" p: n# i& @( y, g# A
tcpdump: listening on bond1, link-type EN10MB (Ethernet), capture size 65535 bytes
/ S; f! p+ f$ h4 k& I9 o16:22:01.140593 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 1576, offset 0, flags [DF], proto ICMP (1), length 84)
2 t& Y; ^  Y" z% Z% L1 X2 N" m  @& x2 G    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1461, length 64
: l! U2 l/ I9 }5 t9 Z' T& H2 A5 ?16:22:02.140601 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 1841, offset 0, flags [DF], proto ICMP (1), length 84)
- @! t& G8 g5 q8 _& [5 [    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1462, length 64
3 m9 o- L& n6 j" p16:22:03.140606 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 2688, offset 0, flags [DF], proto ICMP (1), length 84)4 G8 k  [+ F! O5 |% M1 ?1 s
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1463, length 643 R5 F8 L4 }* s5 P- ?# V6 K
16:22:04.140584 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 3273, offset 0, flags [DF], proto ICMP (1), length 84)
& {. t1 ]/ _7 Y/ V6 T' l    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1464, length 64: b+ ~' U, r# g; B
16:22:05.140544 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 3297, offset 0, flags [DF], proto ICMP (1), length 84)
3 E( {! [9 N" c3 m    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1465, length 64
$ `1 @9 h6 V! F& X- _' {16:22:06.140605 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 3547, offset 0, flags [DF], proto ICMP (1), length 84)
 楼主| 发表于 2018-12-24 18:49:19 | 显示全部楼层
sudo tcpdump  -i  tapa72cc152-ce -w 43.240.248.70.cap
您需要登录后才可以回帖 登录 | 开始注册

本版积分规则

关闭

站长推荐上一条 /4 下一条

如有购买积分卡请联系497906712

QQ|返回首页|Archiver|手机版|小黑屋|易陆发现 点击这里给我发消息

GMT+8, 2020-4-8 03:15 , Processed in 0.048325 second(s), 19 queries .

Powered by 龙睿 bbs168x X3.2

© 2001-2020 Comsenz Inc.

快速回复 返回顶部 返回列表