[tcpdump-workers] When using IPSec, tcpdump doesn't show outgoing packets
Hi When i run the command tcpdump -i eth0 -s0 host IP and host IP , I just see only incoming traffic and not outgoing traffic. I am using IPSec Application. Please suggest/guide and let me know if you need any further information. Thanks Kaushal - This is the tcpdump-workers list. Visit https://cod.sandelman.ca/ to unsubscribe.
Re: [tcpdump-workers] A puzzled maintainer with questions regarding
On Feb 6, 2011, at 10:17 PM, M.Baris Demiray wrote: > Unfortunately no, there is not. As in SIS Layer dissector this is also > a part of a standard which is available only to NATO member states Hey, I'm a citizen of a NATO member state :-) > and that therefore we access through an account. However there is a > version called 1.0.2 on the Internet and there you may find the > section C.3 Structure of sublayer protocol data units (D_PDUs) in > order to observe what a DPDU header looks like. This is a really old > version and I think that's why it's unclassified. Here is the link, > > http://www.armymars.net/ArmyMARS/HF-Email/resources/stanag5066.pdf > > Besides this I will check if I can provide any recent versions of DPDU > headers. OK, so the packets in this file are D_PDUs as described in that section? Do they begin with the 16-bit synchronization sequence, or is that stripped off, so that they begin with the header field? Do data PDUs include the CRC at the end, or is that stripped off? - This is the tcpdump-workers list. Visit https://cod.sandelman.ca/ to unsubscribe.
Re: [tcpdump-workers] Request for new DLT value for Wireshark Dissector
On Feb 4, 2011, at 1:59 AM, Schemmel, Hans-Christoph wrote: > Guy Harris alum.mit.edu> writes: > >> >> OK, so it's: >> >> Header_Size: 1 octet >> >> A sequence of zero or more instances of: >> >> Msg_ID: 2 octets >> >> Freq_ID: 2 octets >> >> Start_Pos: 1 octet >> >> End_Pos: 1 octet >> >> Flag: 1 octet >> >> Direction: 1 octet >> >> MUX_Frame: the rest of the packet >> > > Yes, that´s correct. Start_Pos and End_Pos are relative to the beginning of MUX_Frame, right? I.e., a 4-byte chunk starting at the beginning of MUX_Frame would have a Start_POS of 0? Would End_POS be 3 (meaning that it's the offset of the last byte of the chunk) or 4 (meaning that it's the offset one byte *after* the last byte of the chunk)? - This is the tcpdump-workers list. Visit https://cod.sandelman.ca/ to unsubscribe.
Re: [tcpdump-workers] When using IPSec, tcpdump doesn't show outgoing packets
On Thu, Feb 10, 2011 at 2:09 PM, Kaushal Shriyan wrote: > Hi > > When i run the command tcpdump -i eth0 -s0 host IP and host IP , I just see > only incoming traffic and not outgoing traffic. I am using IPSec > Application. > > Please suggest/guide and let me know if you need any further information. > > Thanks > > Kaushal > > Hi Can someone please guide/suggest me about my earlier post to this Mailing List. Thanks Kaushal - This is the tcpdump-workers list. Visit https://cod.sandelman.ca/ to unsubscribe.
