Date: Tue, 25 Jul 2006 13:06:37 -0500 From: Dan Nelson <dnelson@allantgroup.com> To: Steel City Phantom <scphantm@yahoo.com> Cc: freebsd-questions@freebsd.org Subject: Re: dumping net traffic to log file Message-ID: <20060725180637.GA70646@dan.emsphone.com> In-Reply-To: <44C65765.4090401@yahoo.com> References: <44C51D80.8060306@yahoo.com> <20060725011022.GD27489@jeeves.stilyagin.local> <44C63BBE.90102@yahoo.com> <44C64486.3030005@mac.com> <44C65765.4090401@yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
In the last episode (Jul 25), Steel City Phantom said: > Great, im making good progress here. it seems like tcpdump only > captures the headers, is there a way to capture the entire packet, > data and all? tcpdump only displays a packet summary by default. If you want to see the full packet data, use -X. It's better if you don't do this during capture, though, since it may cause you to drop packets. capture to a file with the -w flag (possibly with -s0 to capture the entire packet), then view the data later with -r. See the manpage for more details. -- Dan Nelson dnelson@allantgroup.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060725180637.GA70646>