[linux] tcpdump a filtrovanie podla DSCP/TOS
Ernest Beinrohr
Ernest na Beinrohr.sk
Čtvrtek Květen 15 09:39:31 CEST 2003
Super, presne to so potreboval, diki moc.
tcpdump -n -i eth0 'ip[1] = 0xf8'
M.F. PSIkappa wrote:
>Zdravim,
>da sa to, ale musis nato prist sam...
>
>Mala rada:
>toto tu vyhladava packety, ktore maju nastaveny DF byt na 0
>tcpdump -n -i eth0 `ip[6:2] & 0x1fff = 0`
>
>Podobne to mozes spravit aj dscp, zistis si zaciatok, offset a hodnotu,
>ktoru hladas...
>
>Ak by si nevedel ako vyzera IP hlavicka, tak kukni sem:
>http://www.incidents.org/papers/OSfingerprinting.php
>alebo sem:
>http://www.erg.abdn.ac.uk/users/gorry/course/inet-pages/ip-packet.html
>
>On Wed, 14 May 2003, Ernest Beinrohr wrote:
>
>
>
>>Zdravim, neviete ci dokaze tcpdump filtrovat IP pakety na zaklade
>>hodnoty ich DSCP/TOS ?
>>
>>
--
Ernest Beinrohr, OERNii
eAdmin @ AxonPro.sk, http://www.AxonPro.sk
+421-2-62410360, +421-903-482603
HomePage: http://www.OERNii.sk/
-----
"Be liberal in what you accept,and conservative in what you send."
-- Postel
Další informace o konferenci linux