将设为首页浏览此站
开启辅助访问 天气与日历 收藏本站联系我们切换到窄版

易陆发现论坛

 找回密码
 开始注册
查看: 3716|回复: 7
收起左侧

tcpdump 抓包

[复制链接]
发表于 2018-12-12 20:02:59 | 显示全部楼层 |阅读模式

马上注册,结交更多好友,享用更多功能,让你轻松玩转社区。

您需要 登录 才可以下载或查看,没有帐号?开始注册

x
sudo tcpdump -i bond1.104 -v -vv -t   
+ J% m" T3 C+ h- g  s
2 a* O3 K+ T) ^( ]
% [" A8 y9 T6 ^5 osudo tcpdump -i ens1f0 -vv -w /tmp/ens1f0.cap     抓包写如文件中
* j9 m# D  h& b8 z& D
 楼主| 发表于 2018-12-13 15:01:49 | 显示全部楼层
sudo tcpdump -i bond1.104 -vvv -t # _" I, s5 r  O8 A$ j" f$ a( Y
tcpdump: WARNING: bond1.104: no IPv4 address assigned" H  D4 G* ?' z: r  G  H4 \
tcpdump: listening on bond1.104, link-type EN10MB (Ethernet), capture size 65535 bytes6 t. Q4 E( |& A( O6 S/ j+ n
IP (tos 0x0, ttl 64, id 18437, offset 0, flags [DF], proto ICMP (1), length 84), o- p, S  g* R( o1 ]/ X  f9 H
    CD--6 > 10.64.35.100: ICMP echo request, id 7024, seq 437, length 646 }8 Z" f& T  T- h+ ~- I
IP (tos 0x0, ttl 64, id 18437, offset 0, flags [DF], proto ICMP (1), length 84)$ T( O6 B2 J% ?
    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 437, length 64
0 C$ ]3 `& p0 R! ?* l: Z  fIP (tos 0x0, ttl 64, id 18696, offset 0, flags [DF], proto ICMP (1), length 84)
0 ^. N4 ^' a. r$ e6 F    CD--6 > 10.4.5.100: ICMP echo request, id 7024, seq 438, length 64
. `% z% J0 Q3 d& {, wIP (tos 0x0, ttl 64, id 18696, offset 0, flags [DF], proto ICMP (1), length 84)% h  c. A) ]- W/ N9 }
    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 438, length 64
; \& p0 K. e2 \3 L+ NIP (tos 0x0, ttl 64, id 18958, offset 0, flags [DF], proto ICMP (1), length 84)0 o+ p9 ^# y1 ^- |/ g
    CD--6 > 10.4.5.100: ICMP echo request, id 7024, seq 439, length 64. B+ i( F2 o; F# H
IP (tos 0x0, ttl 64, id 18958, offset 0, flags [DF], proto ICMP (1), length 84)3 k, W% H" M' C- h6 [# K
    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 439, length 645 f  r+ b/ T% B
IP (tos 0x0, ttl 64, id 19338, offset 0, flags [DF], proto ICMP (1), length 84); ^; ~/ S9 @4 r; ?% y" s
    CD--6 > 10.64.35.100: ICMP echo request, id 7024, seq 440, length 64
6 ^7 f) x4 O4 z$ L, ?# r, O- YIP (tos 0x0, ttl 64, id 19338, offset 0, flags [DF], proto ICMP (1), length 84)
5 r/ N% W9 h' X) s    10.4.5.100 > CD--6: ICMP echo reply, id 7024, seq 440, length 64
发表于 2018-12-14 18:13:01 | 显示全部楼层
sudo tcpdump -i bond1 -vv -e icmp  抓取ICMP包。
发表于 2018-12-14 18:15:28 | 显示全部楼层
sudo  tcpdump -i vnet7 -vv -e icmp   抓取vnet7子接口地址
 楼主| 发表于 2018-12-24 16:20:40 | 显示全部楼层
sudo tcpdump -i bond1 -vv icmp  
1 S" \+ d# l+ _8 w. ?tcpdump: WARNING: bond1: no IPv4 address assigned' B/ }. S& l- p: W' d& ^" k& f
tcpdump: listening on bond1, link-type EN10MB (Ethernet), capture size 65535 bytes( n+ |, i/ s/ c& F' t
16:16:57.141135 IP (tos 0x0, ttl 62, id 52282, offset 0, flags [DF], proto ICMP (1), length 84): P' F0 l0 i( A% k( y1 o6 h' l
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1157, length 645 V* B; v7 q4 ~8 r( G% b
16:16:58.141200 IP (tos 0x0, ttl 62, id 52414, offset 0, flags [DF], proto ICMP (1), length 84)# U2 n$ k6 w2 R* Y/ P& q- F
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1158, length 646 w, y6 F/ p. x  ^/ p. }
16:16:59.141214 IP (tos 0x0, ttl 62, id 53243, offset 0, flags [DF], proto ICMP (1), length 84)
) F, _0 u9 g$ N0 u. h; i    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1159, length 64
: d) ^$ [2 f$ Z$ w3 I& J5 {' k, G7 V16:17:00.141085 IP (tos 0x0, ttl 62, id 53622, offset 0, flags [DF], proto ICMP (1), length 84)  G+ b& K+ i# l( d7 n
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1160, length 64
 楼主| 发表于 2018-12-24 16:22:16 | 显示全部楼层
sudo tcpdump -i bond1 -vv -e icmp  ) a8 {! d7 {$ U8 z( t  {0 `6 r
tcpdump: WARNING: bond1: no IPv4 address assigned
, m6 @- I7 E0 d" Dtcpdump: listening on bond1, link-type EN10MB (Ethernet), capture size 65535 bytes
+ e; [6 _. h4 R9 f9 v/ k& I16:21:23.140673 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 47732, offset 0, flags [DF], proto ICMP (1), length 84)
5 z" Z* T0 G# d. I) r8 d, `" D) Q) I- D0 |
* Y+ Y! r" {. B, U* [0 s2 j

5 N' X8 \! c8 A, e    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1423, length 64
0 K7 D: d7 v3 N8 M" k9 E# s$ j) L. {16:21:24.140663 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 47779, offset 0, flags [DF], proto ICMP (1), length 84)
2 P# y) E2 W* W+ h! j9 \    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1424, length 64' k2 p. t7 s9 [, t" r% D
16:21:25.140651 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 48122, offset 0, flags [DF], proto ICMP (1), length 84)( f; k# V# k; u8 L7 H! X/ A/ [6 A
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1425, length 64
8 ]: q$ C2 |( E( O' Z! @' t0 M1 j16:21:26.140629 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 48938, offset 0, flags [DF], proto ICMP (1), length 84)
: J. q' _! ~  W) {3 X( ?    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1426, length 64
- D: R# y$ {5 G  A+ p: j16:21:27.140613 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 49679, offset 0, flags [DF], proto ICMP (1), length 84)
) f, X7 E$ b, g1 C/ D    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1427, length 64
) r: l3 }- w$ ?16:21:28.140616 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 50377, offset 0, flags [DF], proto ICMP (1), length 84)
, u' i; t' ~" K4 I) ^    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1428, length 64. d2 O& m9 d9 _/ ^! l; ]
16:21:29.140633 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 50603, offset 0, flags [DF], proto ICMP (1), length 84)
) z% a- \  E% S/ x, M/ ?0 K& Z    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1429, length 649 I( a1 z8 P4 v" W9 x
16:21:30.140614 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 51285, offset 0, flags [DF], proto ICMP (1), length 84)
 楼主| 发表于 2018-12-24 16:22:34 | 显示全部楼层
sudo tcpdump -i bond1 -vvv -e icmp  + X/ x5 y" b0 G" U7 h
tcpdump: WARNING: bond1: no IPv4 address assigned+ P# z' V0 Z  W3 F6 J" l
tcpdump: listening on bond1, link-type EN10MB (Ethernet), capture size 65535 bytes
( w' m/ K# \  J# ]6 y16:22:01.140593 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 1576, offset 0, flags [DF], proto ICMP (1), length 84)4 R7 ?8 q2 ~9 `+ x: d
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1461, length 64
% q& a* S: J6 E3 j- K16:22:02.140601 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 1841, offset 0, flags [DF], proto ICMP (1), length 84)
1 K: s& o5 N4 Q    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1462, length 64$ P6 [; j2 C: v$ a
16:22:03.140606 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 2688, offset 0, flags [DF], proto ICMP (1), length 84)
5 ]8 t: K' v- S# r. e. u, m0 T    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1463, length 64+ d+ N" E! ]% V
16:22:04.140584 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 3273, offset 0, flags [DF], proto ICMP (1), length 84)8 s4 [$ l( _) ^
    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1464, length 64* s) F+ m+ D5 ~2 R
16:22:05.140544 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 3297, offset 0, flags [DF], proto ICMP (1), length 84)
4 b( e9 N- t: H" j6 Q: z    10.32.69.236 > 43.240.248.70: ICMP echo request, id 16362, seq 1465, length 64
  R# L: B( U% a% @; Y16:22:06.140605 00:0e:1e:b3:98:20 (oui Unknown) > 00:00:5e:00:01:65 (oui Unknown), ethertype 802.1Q (0x8100), length 102: vlan 205, p 0, ethertype IPv4, (tos 0x0, ttl 62, id 3547, offset 0, flags [DF], proto ICMP (1), length 84)
 楼主| 发表于 2018-12-24 18:49:19 | 显示全部楼层
sudo tcpdump  -i  tapa72cc152-ce -w 43.240.248.70.cap
您需要登录后才可以回帖 登录 | 开始注册

本版积分规则

关闭

站长推荐上一条 /4 下一条

如有购买积分卡请联系497906712

QQ|返回首页|Archiver|手机版|小黑屋|易陆发现 点击这里给我发消息

GMT+8, 2021-6-20 20:39 , Processed in 0.052396 second(s), 22 queries .

Powered by 龙睿 bbs168x X3.2

© 2001-2020 Comsenz Inc.

快速回复 返回顶部 返回列表