Algorithms may be des-cbc, 3des-cbc, blowfish-cbc, rc3-
cbc, cast128-cbc, or none. The default is des-cbc. The
ability to decrypt packets is only present if tcpdump
was compiled with cryptography enabled. Secret is the
ASCII text for ESP secret key. If preceded by 0x, then a
hex value will be read.
The option assumes RFC2406 ESP, not RFC1827 ESP. The
option is only for debugging purposes, and the use of
this option with a true ???secret??? key is discouraged. By
presenting IPsec secret key onto command line you
make it visible to others, via ps(1) and other occasions.
In addition to the above syntax, the syntax file name may
be used to have tcpdump read the provided file in. The
file is opened upon receiving the first ESP packet, so
any special permissions that tcpdump may have been
given should already have been given up.
-f Print ???foreign??? IPv4 addresses numerically rather than
symbolically (this option is intended to get around an
issue in Sun??™s NIS server??”usually it hangs forever
translating nonlocal Internet numbers).
The test for ???foreign??? IPv4 addresses is done using the
IPv4 address and netmask of the interface on which
capture is being done. If that address or netmask is not
available either because the interface on which the
capture is being done has no address or netmask or
because the capture is being done on the Linux ???any???
interface, which can capture on more than one
interface, this option will not work correctly.
Pages:
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267