Comments on Linux tcpdump Command Tutorial for Beginners (8 Examples)

Everytime you open a webpage on your computer, data packets are sent and received on your network interface. Sometimes, analyzing these packets becomes important for many reasons. Thankfully, Linux offers a command line utility that dumps information related to these data packets in output.

2 Comment(s)

Add comment

Please register in our forum first to comment.

Comments

By: Miten
Reply  

please add section to filter on the output like src ip, dest ip, dest port at least to help make some good use of output.  usually we open the saved file in some gui editor and work from there but if command line has the options would be nice to know else just show how to post process the output.  Nice article.

By: ivanov
Reply  

@Miten,tcpdump src <source_ip>tcpdump dst <destination_ip>tcpdump src port <source_port>tcpdump dst port <destination_port>Detailed tutorial:  https://danielmiessler.com/study/tcpdump/I usually use tcpdump to capture network traffic on no-GUI Linux computers, but then copy file to my PC and make detailed analysis with Wireshark which supports tcpdump native capture format.