Ethereal-users: [Ethereal-users] New User - Capture filter question

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next
From: jeanne_gaskill@xxxxxxxxxxxxxx
Date: Tue, 6 Nov 2001 11:09:10 -0800

I have not been able to make sense of the TCPDump man page and have never worked with TCPDump before.  Please help with a couple of questions to get me started.  I think I'll be able to make sense of the man page after that.

Q1:  If I wanted to apply a capture filter so that I could capture say three different types of packets, what would the exact syntax be.  For arguments sake, let's say I want to capture TCP, AARP and DNS packets.

Q2:  If I wanted to view only traffic to or from a particular IP address and only see packets of the same three types I mentioned above, what would the exact syntax be.

Thanks in advance for this info.

Jeanne