Electronic Books

The units of
file_size are millions of bytes (1,000,000 bytes, not
1,048,576 bytes).
-d Dump the compiled packet-matching code in a
human-readable form to standard output and stop.
-dd Dump packet-matching code as a C program
fragment.
-ddd Dump packet-matching code as decimal numbers
(preceded by a count).
-D Print the list of the network interfaces available on
the system and on which tcpdump can capture packets.
For each network interface, a number and an interface
name, possibly followed by a text description of the
interface, is printed. The interface name or the number
can be supplied to the -i flag to specify an interface on
which to capture. This can be useful on systems that
do not have a command to list them (e.g., Windows
systems, or Unix systems lacking ifconfig -a); the
number can be useful on Windows 2000 and later
systems, where the interface name is a somewhat
complex string.
702
Practical Hacking Techniques and Countermeasures
Chapter Tool Syntax
Chapter 5
(continued)
WinDump The -D flag will not be supported if tcpdump was built
with an older version of libpcap that lacks the
pcap_findalldevs() function.
-e Print the link-level header on each dump line.
-E Use spi@ipaddr algo:secret for decrypting IPsec ESP
packets that are addressed to addr and contain Security
Parameter Index value spi. This combination may be
repeated with comma or newline separation.
Note that setting the secret for IPv4 ESP packets is
supported at this time.


Pages:
242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266