Re: Auditing / Logging

From: cdowns (cdowns@drippingdead.com)
Date: Tue Jan 13 2004 - 15:20:38 EST

Steve,

    I usually run like so:
   
    tcpdump -i eth0 -s 0 -X -v -l /tmp/dump.txt net 192.168.0.0/24 '&&'
! port 22 && tail -f -n 20 /tmp/dump.txt

    Hope this helps.

    ~!>D

---------------------------------------------------------------------------
----------------------------------------------------------------------------

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:45 EDT