[LUNI] tcpdump help
Craig Van Tassle
craig at codestorm.org
Wed Oct 17 11:50:08 CDT 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Wed, 17 Oct 2007 10:28:04 -0500 (CDT)
"Steve Pribyl" <linux at unliketea.com> wrote:
> I need some help reading a tcp dump line.
>
> What is this saying?
> 10:31:48.954150 IP (tos 0x0, ttl 63, id 0, offset 0, flags [DF],> length: 432) host1.isakmp > host2.isakmp: [|isakmp]
>
>
> Thanks
Ok it's an IP packet going from host1 udp port 500 to host2 udp port
500. Its got a Time To Live of 63 hops, its 432 bits in length, Type of
service is normal IP. and its the start of a conection (though udp is
connectionless so that does not matter.)
OH and it was seen at 10:31AM and 48seconds.
- --
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.7 (GNU/Linux)
iD8DBQFHFi8zv8bO71D0xskRAg/yAJ41tD5mxyAwmf0S5P/QsG332KvoPgCgns4b
B79SnevVR1tG1wJngIp40t0=
=ZOoQ
-----END PGP SIGNATURE-----
More information about the luni
mailing list