Electronic Books

-vv Even more verbose output. For example, additional
fields are printed from NFS reply packets.
-w Write the raw packets to file rather than parsing and
printing them out. They can later be printed with the
-r option. Standard output is used if file is ???-.???
-x Print each packet (minus its link level header) in hex.
The smaller of the entire packet or snaplen bytes will
be printed.
WinDump tcpdump [ -ABdDeflLnNOpqRStuUvxX ]
[ -c count ]
[ -C file_size ] [ -F file ]
[ -i interface ] [ -m module ] [ -M secret ]
[ -r file ] [ -s snaplen ] [ -T type ]
[ -w file ]
Appendix B : Tool Syntax
701
Chapter Tool Syntax
Chapter 5
(continued)
WinDump [ -W filecount ]
[ -E spi@ipaddr algo:secret,... ]
[ -y datalinktype ] [ -Z user ]
[ expression ]
Options:
-A Print each packet (minus its link level header) in
ASCII. Handy for capturing web pages.
-B (Win32 specific) Set driver??™s buffer size to size in
kilobytes. The default buffer size is 1 megabyte (i.e.,
1000). If there is any loss of packets during the capture,
you can increase the kernel buffer size by means of this
switch, since the dimension of the driver??™s buffer
influences heavily the capture performance.
-c Exit after receiving count packets.
-C Before writing a raw packet to a savefile, check
whether the file is currently larger than file_size and, if
so, close the current savefile and open a new one.
Savefiles after the first savefile will have the name
specified with the -w flag, with a number after it,
starting at 1 and continuing upward.


Pages:
241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265