How to print BOOTP/DHCP packets

[Javier Gálvez Guerrero <javier.galvez.guerrero () gmail com>]

Hi,

I want to get the information included in bootp/dhcp packets captured
through tcpdump. I tried adding -v, -vv and -vvv options to the issued
command but all the information I got was like this:

pike:/home/dulceangustia/tcpdump-4.0.0# tcpdump -i ra0 port bootps -vvv
tcpdump: listening on ra0, link-type EN10MB (Ethernet), capture size 96
bytes
15:55:05.002857 IP (tos 0x10, ttl 128, id 0, offset 0, flags [none], proto
UDP (17), length 328)
    0.0.0.0.bootpc > 255.255.255.255.bootps: BOOTP/DHCP, Request from
00:1c:f0:0f:fb:84 (oui Unknown), length 300, xid 0x400a6f75, Flags [none]
(0x0000)
      Client-Ethernet-Address 00:1c:f0:0f:fb:84 (oui Unknown) [|bootp]
15:55:05.014049 IP (tos 0x0, ttl 64, id 28669, offset 0, flags [none], proto
UDP (17), length 328)
    192.168.1.1.bootps > 255.255.255.255.bootpc: BOOTP/DHCP, Reply, length
300, xid 0x400a6f75, Flags [none] (0x0000)
      Your-IP spike.local
      Client-Ethernet-Address 00:1c:f0:0f:fb:84 (oui Unknown) [|bootp]

I know that more information could be printed due to print-bootp.c file,
which loops through all existing dhcp options, but I don't know how to do
it. Could anyone point me to the right tcpdump option, please?


Any help would be much appreciated. Thank you so much,
Javi
-
This is the tcpdump-workers list.
Visit https://cod.sandelman.ca/ to unsubscribe.