From: Smith, Mike R. (smithmr@bowater.com)
Date: Thu Aug 28 2003 - 11:21:39 EDT
I finally ended up adding the packetfilter option to the kernel and rebooting. I then used tcpdump which worked quite nicely. I had suggestions from:
Kris Smith - Netstat (I did not see how to get it to show me the data itself going across a port)
Jim Fitzmauice - lsof (same issue as above, it could tell me about port, I did not see how to make it show me the data)
Phil Baldwin - use ethereal on a windows or linux box and set up a port span on your network switches for the 2
IP addresses and ports. - (Looked to be a bit too much effort for this issue)
Original question:
> I am running Tru64 5.1 latest patch_kit. My application people use a port
> on the Unix machine to pass traffic to an NT machine and also for
> receiving traffic from the NT system (same port). The receive is working
> fine but the data sent is not being received. I want to monitor that
> specific port to verify that traffic is leaving the system on that port.
>
> I thought tcpdump might help but my kernel does not have packetfilter in
> it and I would rather not reboot if I don't have to. Any suggestions?
>
> smithmr (at) bowater.com
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:49:34 EDT