Re: Google Groups (was: Why does tcpdump show few packet?)

---

• From: "Zheng Da" <zhengda1936@xxxxxxxxx>
• Date: 26 Sep 2006 22:44:25 -0700

---

Alan Connor 写道：

On comp.os.linux.networking, in
<1159325002.878543.168020@xxxxxxxxxxxxxxxxxxxxxxxxxxx>, "Zheng
Da" wrote:

Hello. I try to use tcpdump, and don't filter any packets.
debian:/home/zhengda# tcpdump -i eth0 tcpdump: verbose
output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size
96 bytes 23:46:36.611022 IP 222.205.2.248.netbios-dgm >
222.205.2.255.netbios-dgm: NBT UDP PACKET(138)

1 packets captured 250 packets received by filter 0 packets
dropped by kernel

There are 250 packets received by filter, why only 1 packets is
captured. But there is no filter rule at all. Why?

That's easy. Learn to use a real newsreader and I'll tell
you.

news.software.readers

But you probably _do_ know how to use a real newsreader but
want extra anonymity for some reason.

Spammer?Cracker?Troll?Cyberstalker?

I use postnews.google.com because I couldn't connect to Internet
directly when I was at the school. I had to search for proxies, but
most of proxies only supported http.
So I started to use postnews.google.com, and now I am used to.
If it offends you, I beg your forgiveness, and I promise I won't use it
any more.

postnews.google.com should be shut down. The only people that use
it are trolls and people who just take from the Usenet and never
give back, using different aliases every time they post so that

I always use the same name "Zheng Da" to post messages

no one notices. Which makes them trolls, actually.



Alan

--
http://home.earthlink.net/~alanconnor/contact.html
http://home.earthlink.net/~alanconnor/cr.html
http://home.earthlink.net/~alanconnor/publickey.html

.

---

• References:
  • Why does tcpdump show few packet?
    • From: Zheng Da

• Prev by Date: Re: D-Link GLB-502T ADSL Router problem in "Bridge mode"
• Next by Date: no clue how to do truly remote XDMCP
• Previous by thread: Why does tcpdump show few packet?
• Next by thread: Re: Why does tcpdump show few packet?
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Update: UDP 770 Potential Worm ... > were no packets indicating some form of replication. ... > my capture was limited due to the switched ... to see if the problem occurs on the test network, ... The proxy had already been isolated from the ... (Incidents) Re: Continuous internet activity ... IP address out of the exercise (dest address for the packets). ... starts the capture. ... Wireshark is not running, and then it is "safe" to transmit ... There is a small probability of a networking problem, ... (alt.comp.hardware.pc-homebuilt) Re: Auditing / Logging ... to explicitly set these values and capture the text output seperately. ... The key is that dumping anything to console or making tcpdump generate ... wants in order to capture full packets, save them to disk, and go ... (Pen-Test) flooding an embedded device with isic and tcpreplay causing different results ... I'm trying to force a reload of an embedded SOHO router/NAT Gateway. ... now I wondering why the tcpreplay attack don't f*** up the SOHO. ... The tcpdump isn't complete because of "dropped by kernel" packets - ... listening on eth0, link-type EN10MB, capture size ... (Pen-Test) [TOOL] RPCAP, Remote Packet Capture System ... RPCAP is a Remote Packet Capture system. ... and uplink the captured packets to another ... the server which captures network traffic on a remote system, ... and a client, which receives and processes these packets. ... (Securiteam)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Newsgroups  > comp.os.linux.networking  > 2006-09