tcpdump mailing list archives
Re: only outbound traffic
From: Andrej van der Zee <andrejvanderzee () gmail com>
Date: Thu, 28 Apr 2011 22:51:23 +0900
Hi,
I have a ProCurve J9021A Switch 2810-24G and configured port A to be mirrored to port B. When I run tcpdump on port B, I can only see the outgoing traffic on port A, but no incoming traffic at all! The configuration menu of the switch does not have any options for egress and/or ingress. According to the manual, it is supposed to do both at all times. I also turned off all Firewalls, but still no luck. What am I forgetting?
Well, I experienced VLAN-tags for the first time... This solved my problem for listening on port 3306: tcpdump -i eth1 "(port 3306) or (vlan and port 3306)" Is there any documentation on how libpcap/tcpdump/BPF deal with VLAN tags? Its still a bit of a mystery to me... Thank you, Andrej - This is the tcpdump-workers list. Visit https://cod.sandelman.ca/ to unsubscribe.
Current thread:
- only outbound traffic Andrej van der Zee (Apr 28)
- Re: only outbound traffic Andrej van der Zee (Apr 28)
- Re: only outbound traffic Gerald Combs (Apr 28)
- Re: only outbound traffic Andrej van der Zee (Apr 28)
- Re: only outbound traffic Guy Harris (Apr 28)
- Re: only outbound traffic Andrej van der Zee (Apr 29)
- Re: only outbound traffic Seth Hall (May 02)
- Re: only outbound traffic Gerald Combs (Apr 28)
- Re: only outbound traffic Andrej van der Zee (Apr 28)