Re: Why does tcpdump show few packet?
- From: Rick Jones <rick.jones2@xxxxxx>
- Date: Thu, 28 Sep 2006 17:26:46 GMT
Zheng Da <zhengda1936@xxxxxxxxx> wrote:
I try to use tcpdump, and don't filter any packets.
debian:/home/zhengda# tcpdump -i eth0
tcpdump: verbose output suppressed, use -v or -vv for full protocol
decode
listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes
23:46:36.611022 IP 222.205.2.248.netbios-dgm >
222.205.2.255.netbios-dgm: NBT UDP PACKET(138)
1 packets captured
250 packets received by filter
0 packets dropped by kernel
There are 250 packets received by filter, why only 1 packets is
captured. But there is no filter rule at all.
Why?
Is there perhaps some "default" filter in the tcpdump you are using?
rick jones
--
No need to believe in either side, or any side. There is no cause.
There's only yourself. The belief is in your own precision. - Jobert
these opinions are mine, all mine; HP might not want them anyway... :)
feel free to post, OR email to rick.jones2 in hp.com but NOT BOTH...
.
- References:
- Why does tcpdump show few packet?
- From: Zheng Da
- Why does tcpdump show few packet?
- Prev by Date: VLAN
- Next by Date: Re: VLAN
- Previous by thread: Re: Why does tcpdump show few packet?
- Next by thread: no clue how to do truly remote XDMCP
- Index(es):
Relevant Pages
|
