tcpdump to a .cap file and analyze using WireShark

Writing by on Friday, 18 of July , 2008 at 5:37 pm

To capture tcpdump output

tcpdump -v -s 4096 -w capfile.cap port 25

You can then read the capfile.cap file using WireShark

Leave a comment

Category: Linux,Tips and Tricks

No Comments

No comments yet.

Leave a comment

You must be logged in to post a comment.

Shivdev Kalambi's Blog

Shivdev Kalambi is a Software Development Manager, previously a Principal Software Engineer at ArcSight/HP. With over 16 years' experience in software development, he's worked on several technologies and played different roles and contributed to all phases of projects. Non-tech activies include Ping-pong, Rock Climbing and Yoga at PG, Golf, Skiing, Swimming & a beer enthusiast.