tcpdump basic

ifconfig

basic

sudo tcpdump -i eth0
sudo tcpdump -i eth0 | grep HTTP

save and read from file

sudo tcpdump -i eth0 -w capture_tmp1.pcap
ll
sudo tcpdump -r capture_tmp1.pcap
sudo tcpdump -r -v capture_tmp1.pcap

filter

sudo tcpdump -i eth0 -w capture_tmp1.pcap host btbw.pl