HPE Community
Operating System - HP-UX
1832339 Members
2557 Online
110041 Solutions
New Discussion

Re: Procedure to run ethereal trace

 
tr10385
Frequent Advisor

‎02-20-2008 12:22 AM

‎02-20-2008 12:22 AM

Procedure to run ethereal trace

Can you pls. send me the procedure for running ethereal trace from hp-ux device.
0 Kudos
Reply
5 REPLIES 5
Khairy
Esteemed Contributor

‎02-20-2008 12:41 AM

‎02-20-2008 12:41 AM

Re: Procedure to run ethereal trace

hi there,

ethereal is full gui utility. Just execute ethereal and the window will appear. But its in gtk style window.

You could start it from command line with a log of parameters.

For a start, take a view of this doc->http://netmirror.org/mirror/ftp.ethereal.com/docs/user-guide-a4.pdf

Don't forget to assign some points if this answers your question. thanks!

Rgds
0 Kudos
Reply
Khairy
Esteemed Contributor

‎02-20-2008 01:14 AM

‎02-20-2008 01:14 AM

Re: Procedure to run ethereal trace

how about tcpdump?

you can execute it from command line and you could see all the ack and nak info you wants.

format would be :
# tcpdump -i

0 Kudos
Reply
tr10385
Frequent Advisor

‎02-20-2008 01:20 AM

‎02-20-2008 01:20 AM

Re: Procedure to run ethereal trace

i am basically checking the trace for a source (which is natted) to destination in DMZ. So we expect a firewall between a the source and destination (in dmz). I am checking teh bi-drectional traffic between them on port 80. Can you pls. suggest the command format for this and the output should be readable in a log file.
Thank you
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎02-20-2008 02:05 AM

‎02-20-2008 02:05 AM

Re: Procedure to run ethereal trace

Shalom,

Use the gui filter either by host name or port 80 or both if the gui lets.

Otherwise consider using tcpdump and then grep to further filter the output.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
tr10385
Frequent Advisor

‎02-27-2008 11:49 PM

‎02-27-2008 11:49 PM

Re: Procedure to run ethereal trace

format would be :
# tcpdump -i

interface should be IP address of the destination or the port. Basically I am trying to check a manual ISEE connectivity to the destination (dmz) which is a windows machine. there is no communication happenning between a HP-UX device to Windows machine (in dmz).

What is the significance of keepalive value:

ndd -get /dev/tcp tcp_keepalive_interval
7200000

How do I change this value to higher or lower value.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.