tcpdump and ping packets [cont]

From: Marko Havu (Marko.Havu@havutuote.fi)
Date: Fri Dec 13 2002 - 13:05:29 EST

• Next message: Marko Havu: "SUMMARY: tcpdump and ping packets"
• Previous message: Ann Cantelow: "SUMMARY: Comment on libmcrypt compile"
• Next in thread: Marko Havu: "SUMMARY: tcpdump and ping packets"
• Reply: Marko Havu: "SUMMARY: tcpdump and ping packets"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Fri, 13 Dec 2002, Marko Havu wrote:

> I'm trying to use tcpdump to troubleshoot a problem with ipnat. It doesn't
> see the ping packets, though. All interfaces reply to ping, but tcpdump
> doesn't show any icmp traffic. I even tried "tcpdump -itu1 'icmp[0]=8 or
> icmp[0]=0'" to specifically dump just ping packets, but tcpdump keeps
> quiet. Could this be ipfilter specific?

I don't seem to get much other stuff either. It seems as if only arp and
rip packets and packets to and from ports 137 and 138 are reported by
tcpdump. Pings or ongoing ssh, ftp and http connections are not visible
at all. I tried unconfiguring ipfilter from the kernel, and it didn't have
any effect. I'm running Tru64 UNIX V5.1A.

 - Marko

• Next message: Marko Havu: "SUMMARY: tcpdump and ping packets"
• Previous message: Ann Cantelow: "SUMMARY: Comment on libmcrypt compile"
• Next in thread: Marko Havu: "SUMMARY: tcpdump and ping packets"
• Reply: Marko Havu: "SUMMARY: tcpdump and ping packets"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:49:02 EDT