Raspberry Pi - Network Analysis - TCPDUMP

Tcpdump – common commands https://amzn.to/2SUGAxM - Linux for Dummies

Capture Packets from Specific Interface – use tcpdump –D to show what interfaces are available.

tcpdump -i wlan0 (in my Pi Zero wlan0 is the wifi interface - check using ifconfig if you need the name)

tcpdump -r capture.pcap ( -r means READ )

tcpdump -i eth0 tcp (Capture only TCP packets)

tcpdump -i eth0 port 22 (Capture only ssh packets - change 22 to whichever port you need to analyse )

tcpdump -i eth0 src 192.168.1.6 (Capture from specific ip)

tcpdump -i eth0 dst 8.8.8.8 (Capture to specific ip)

#RaspberryPi #Linux #TCPDUMP #WIRESHARK

Check out the Minimalist online python IDE : https://epyco.herokuapp.com/ https://epico.herokuapp.com/

Buy Dr Pi a Coffee...or Tea! : https://www.buymeacoffee.com/DrPi ... https://www.youtube.com/watch?v=x2fJ9tCKI7U