tcpdump mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Trace conversion.

From: alex medvedev <alexm () pycckue org>
Date: Fri, 17 Sep 2004 16:24:52 -0500 (CDT)
Hi Paul,

i think this will accomplish what you want:

# tcpdump -ln ip| awk '{print $1,",", $5}' | sed 's/\.[0-9]*:$//'

this won't work with icmp though...

-alexm
16:11 17/09/2004

On Fri, 17 Sep 2004, Paul Berube wrote:



Hi.

I think I have a simple problem, but I can't seem to find a simple
solution...  First, let me say that I know very little in the networks
field, that I'm working under Cygwin and Linux, and that I don't have root
access.

Ok.  I have a couple traces in tcpdump format.  What I actually need is
just a list of destination addresses for the trace.  I might be able to
use a timestamp if I got really fancy, but it's not required. So,
precisely, for each packet in the trace, in chronological order, I
want a <ts,dest_ip> pair.  That's it.

I suspect this wouldn't be too hard if the tcpdump format was specified,
but if it is, I can't find such a document.

If anyone could point me in the right direction here, that would be super.

Thanks!

-
This is the tcpdump-workers list.
Visit https://lists.sandelman.ca/ to unsubscribe.



-
This is the tcpdump-workers list.
Visit https://lists.sandelman.ca/ to unsubscribe.
Previous By Date Next
Previous By Thread Next

Current thread: