> #tcpdump port 4957 > I want to obtain the payload data to see what is realy being exchanged > between my Debian server and the outside network element . Can you please > let me know how I can modify my command ?
Try tcpdump host <IP-addr-deb-server> and port 4957 This will grab all packets to and from the server, which are to or from port 4957 If you want traffic in one direction only, you can use "src host" or "dst host" instead of "host", and/or "src port" or "dst port" instaed of "port". You could add -s 0 to ensure you grab entire packets regardless of size, and -v, -vv or -vvv if you need more details on packets. John -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1f1816a91002200315o39f14dbdsd6376f5a3b9ec...@mail.gmail.com
