使用tcpdump检查ping请求

Hujiuxiang 2019-08-22 ・1 分钟阅读

#shell脚本 #tcpdump #检查 #ping

tcmdump检查ping

tcpdump -nni eth0 -e icmp[icmptype] == 8

仅使用tcpdump捕获ping请求

示例输出

tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
01:02:26.801406 00:15:c7:09:fc:00 > d4:ae:52:d1:78:6d, ethertype IPv4 (0x0800), length 74: x.x.x.x > x.x.x.x: ICMP echo request, id 62464, seq 11, length 40