LINUX.ORG.RU
ФорумAdmin

TCPDump


0

0

у меня стоит роутер под редхат 7.2, запущен тисипидамп. пишет все в файл. моя машина имеет айпи на внешнем интерфейсе 10.4.165.254, 10.4.100.7 - машина из другой подсети в корпоративе. Подскажите кто-нибудь, хотябы примерно, что хотели от моей тачки? Ниже-кусок из протокола.

10:21:15.554273 > 10.4.165.254.61055 > 10.4.100.7.3538: S 1135425:1135425(0) win 8192 <mss 1460,nop,nop,sackOK> (DF) 10:21:15.564273 < 10.4.100.7.3538 > 10.4.165.254.61055: S 1871645:1871645(0) ack 1135426 win 8760 <mss 1460,nop,nop,sackOK> (DF) 10:21:15.564273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 1:1(0) ack 1 win 8760 (DF) 10:21:15.584273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 1:1461(1460) ack 1 win 8760 (DF) 10:21:15.594273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 1461:2921(1460) ack 1 win 8760 (DF) 10:21:15.594273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 1:1(0) ack 2921 win 8760 (DF) 10:21:15.614273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 2921:4381(1460) ack 1 win 8760 (DF) 10:21:15.614273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 4381:5841(1460) ack 1 win 8760 (DF) 10:21:15.614273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 1:1(0) ack 5841 win 8760 (DF) 10:21:15.624273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 5841:7301(1460) ack 1 win 8760 (DF) 10:21:15.624273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 1:5(4) ack 7301 win 8760 (DF) 10:21:15.634273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 7301:8193(892) ack 1 win 8760 (DF) 10:21:15.644273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 8193:9653(1460) ack 5 win 8756 (DF) 10:21:15.644273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 5:9(4) ack 9653 win 8760 (DF) 10:21:15.654273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 9653:11113(1460) ack 5 win 8756 (DF) 10:21:15.654273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 11113:12289(1176) ack 5 win 8756 (DF) 10:21:15.654273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 9:9(0) ack 12289 win 8760 (DF) 10:21:15.664273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 12289:13749(1460) ack 5 win 8756 (DF) 10:21:15.674273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 13749:15209(1460) ack 9 win 8752 (DF) 10:21:15.674273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 9:13(4) ack 15209 win 8760 (DF) 10:21:15.674273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 15209:16385(1176) ack 9 win 8752 (DF) 10:21:15.684273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 16385:17845(1460) ack 9 win 8752 (DF) 10:21:15.684273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 13:17(4) ack 17845 win 8760 (DF) 10:21:15.684273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 17845:19305(1460) ack 9 win 8752 (DF) 10:21:15.694273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 19305:20481(1176) ack 9 win 8752 (DF) 10:21:15.694273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 17:17(0) ack 20481 win 8760 (DF) 10:21:15.694273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 20481:21941(1460) ack 13 win 8748 (DF) 10:21:15.704273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 21941:23401(1460) ack 13 win 8748 (DF) 10:21:15.704273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 17:17(0) ack 23401 win 8760 (DF) 10:21:15.704273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 23401:24577(1176) ack 17 win 8744 (DF) 10:21:15.714273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 17:21(4) ack 24577 win 7584 (DF) 10:21:15.714273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 24577:26037(1460) ack 17 win 8744 (DF) 10:21:15.724273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 26037:27497(1460) ack 17 win 8744 (DF) 10:21:15.724273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 21:25(4) ack 27497 win 8760 (DF) 10:21:15.724273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 27497:28673(1176) ack 17 win 8744 (DF) 10:21:15.734273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 28673:30133(1460) ack 17 win 8744 (DF) 10:21:15.734273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 25:29(4) ack 30133 win 8760 (DF) 10:21:15.734273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 30133:31593(1460) ack 17 win 8744 (DF) 10:21:15.744273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 31593:33053(1460) ack 25 win 8736 (DF) 10:21:15.744273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 29:29(0) ack 33053 win 8760 (DF) 10:21:15.744273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 33053:34513(1460) ack 25 win 8736 (DF) 10:21:15.754273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 34513:35973(1460) ack 25 win 8736 (DF) 10:21:15.754273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 29:29(0) ack 35973 win 8760 (DF) 10:21:15.754273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 35973:36865(892) ack 29 win 8732 (DF) 10:21:15.754273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 29:33(4) ack 36865 win 7868 (DF) 10:21:15.764273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 36865:38325(1460) ack 29 win 8732 (DF) 10:21:15.764273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 33:37(4) ack 38325 win 8760 (DF) 10:21:15.774273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 39785:40961(1176) ack 29 win 8732 (DF) 10:21:15.774273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 37:37(0) ack 38325 win 8760 <nop,nop, sack 1 {39785:40961} > (DF) 10:21:15.774273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 40961:42421(1460) ack 29 win 8732 (DF) 10:21:15.774273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 37:37(0) ack 38325 win 8760 <nop,nop, sack 1 {39785:42421} > (DF) 10:21:15.784273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 42421:43881(1460) ack 29 win 8732 (DF) 10:21:15.784273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 37:37(0) ack 38325 win 8760 <nop,nop, sack 1 {39785:43881} > (DF) 10:21:15.784273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 43881:45341(1460) ack 37 win 8724 (DF) 10:21:15.784273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 37:37(0) ack 38325 win 8760 <nop,nop, sack 1 {39785:45341} > (DF) 10:21:15.794273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 45341:46801(1460) ack 37 win 8724 (DF) 10:21:15.794273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 37:37(0) ack 38325 win 8760 <nop,nop, sack 1 {39785:46801} > (DF) 10:21:15.804273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 38325:39785(1460) ack 37 win 8724 (DF) 10:21:15.804273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 37:37(0) ack 46801 win 8760 (DF) 10:21:15.804273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 46801:48261(1460) ack 37 win 8724 (DF) 10:21:15.804273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 37:41(4) ack 48261 win 8760 (DF) 10:21:15.814273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 48261:49153(892) ack 37 win 8724 (DF) 10:21:15.814273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 41:45(4) ack 49153 win 7868 (DF) 10:21:15.824273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 49153:50613(1460) ack 37 win 8724 (DF) 10:21:15.824273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 45:49(4) ack 50613 win 8760 (DF) 10:21:15.824273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 50613:52073(1460) ack 37 win 8724 (DF) 10:21:15.834273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 52073:53249(1176) ack 37 win 8724 (DF) 10:21:15.834273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 49:49(0) ack 53249 win 8760 (DF) 10:21:15.834273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 53249:54709(1460) ack 37 win 8724 (DF) 10:21:15.834273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 49:53(4) ack 54709 win 8760 (DF) 10:21:15.844273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 54709:56169(1460) ack 41 win 8720 (DF) 10:21:15.854273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 56169:57629(1460) ack 49 win 8712 (DF) 10:21:15.854273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 53:53(0) ack 57629 win 8760 (DF) 10:21:15.854273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 57629:59089(1460) ack 49 win 8712 (DF) 10:21:15.864273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 59089:60549(1460) ack 49 win 8712 (DF) 10:21:15.864273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 53:53(0) ack 60549 win 8760 (DF) 10:21:15.864273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 60549:61441(892) ack 49 win 8712 (DF) 10:21:15.864273 < 10.4.100.7.3538 > 10.4.165.254.61055: P 61441:61640(199) ack 53 win 8708 (DF) 10:21:15.864273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 53:53(0) ack 61640 win 7669 (DF) 10:21:15.864273 > 10.4.165.254.61055 > 10.4.100.7.3538: P 53:57(4) ack 61640 win 7669 (DF) 10:21:15.894273 > 10.4.165.254.61055 > 10.4.100.7.3538: FP 57:61(4) ack 61640 win 7669 (DF) 10:21:15.894273 < 10.4.100.7.3538 > 10.4.165.254.61055: . 61640:61640(0) ack 62 win 8700 (DF) 10:21:15.894273 < 10.4.100.7.3538 > 10.4.165.254.61055: F 61640:61640(0) ack 62 win 8700 (DF) 10:21:15.894273 > 10.4.165.254.61055 > 10.4.100.7.3538: . 62:62(0) ack 61641 win 7669 (DF) 10:23:38.604273 > 10.4.165.254.61055 > 10.4.100.7.1643: S 1278510:1278510(0) win 8192 <mss 1460,nop,nop,sackOK> (DF) 10:23:38.614273 < 10.4.100.7.1643 > 10.4.165.254.61055: S 2014716:2014716(0) ack 1278511 win 8760 <mss 1460,nop,nop,sackOK> (DF) 10:23:38.614273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 1:1(0) ack 1 win 8760 (DF) 10:23:38.634273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 1:1461(1460) ack 1 win 8760 (DF) 10:23:38.644273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 1461:2921(1460) ack 1 win 8760 (DF) 10:23:38.644273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 1:1(0) ack 2921 win 8760 (DF) 10:23:38.654273 < 10.4.100.7.1643 > 10.4.165.254.61055: P 2921:4381(1460) ack 1 win 8760 (DF) 10:23:38.664273 > 10.4.165.254.61055 > 10.4.100.7.1643: P 1:5(4) ack 4381 win 8760 (DF) 10:23:38.664273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 4381:5841(1460) ack 1 win 8760 (DF) 10:23:38.674273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 5841:7301(1460) ack 1 win 8760 (DF) 10:23:38.674273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 5:5(0) ack 7301 win 8760 (DF) 10:23:38.674273 < 10.4.100.7.1643 > 10.4.165.254.61055: P 7301:8193(892) ack 5 win 8756 (DF) 10:23:38.684273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 8193:9653(1460) ack 5 win 8756 (DF) 10:23:38.684273 > 10.4.165.254.61055 > 10.4.100.7.1643: P 5:9(4) ack 8193 win 7868 (DF) 10:23:38.694273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 9653:11113(1460) ack 5 win 8756 (DF) 10:23:38.694273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 9:9(0) ack 11113 win 8760 (DF) 10:23:38.694273 < 10.4.100.7.1643 > 10.4.165.254.61055: P 11113:12289(1176) ack 5 win 8756 (DF) 10:23:38.704273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 12289:13749(1460) ack 5 win 8756 (DF) 10:23:38.704273 > 10.4.165.254.61055 > 10.4.100.7.1643: P 9:13(4) ack 13749 win 8760 (DF) 10:23:38.704273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 13749:15209(1460) ack 9 win 8752 (DF) 10:23:38.714273 < 10.4.100.7.1643 > 10.4.165.254.61055: P 15209:16669(1460) ack 9 win 8752 (DF) 10:23:38.714273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 13:13(0) ack 16669 win 8760 (DF) 10:23:38.724273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 16669:18129(1460) ack 9 win 8752 (DF) 10:23:38.724273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 18129:19589(1460) ack 9 win 8752 (DF) 10:23:38.724273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 13:13(0) ack 19589 win 8760 (DF) 10:23:38.724273 < 10.4.100.7.1643 > 10.4.165.254.61055: P 19589:20481(892) ack 13 win 8748 (DF) 10:23:38.724273 > 10.4.165.254.61055 > 10.4.100.7.1643: P 13:17(4) ack 20481 win 7868 (DF) 10:23:38.734273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 20481:21941(1460) ack 13 win 8748 (DF) 10:23:38.734273 > 10.4.165.254.61055 > 10.4.100.7.1643: P 17:21(4) ack 21941 win 8760 (DF) 10:23:38.744273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 21941:23401(1460) ack 13 win 8748 (DF) 10:23:38.744273 < 10.4.100.7.1643 > 10.4.165.254.61055: P 23401:24577(1176) ack 13 win 8748 (DF) 10:23:38.744273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 24577:24577(0) ack 21 win 8740 (DF) 10:23:38.744273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 21:21(0) ack 24577 win 8760 (DF) 10:23:38.754273 > 10.4.165.254.61055 > 10.4.100.7.1643: P 21:25(4) ack 24577 win 8760 (DF) 10:23:38.754273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 24577:26037(1460) ack 21 win 8740 (DF) 10:23:38.764273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 26037:27497(1460) ack 21 win 8740 (DF) 10:23:38.764273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 25:25(0) ack 27497 win 8760 (DF) 10:23:38.764273 < 10.4.100.7.1643 > 10.4.165.254.61055: P 27497:28673(1176) ack 21 win 8740 (DF) 10:23:38.774273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 28673:30133(1460) ack 25 win 8736 (DF) 10:23:38.774273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 25:25(0) ack 30133 win 8760 (DF) 10:23:38.784273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 30133:31593(1460) ack 25 win 8736 (DF) 10:23:38.784273 < 10.4.100.7.1643 > 10.4.165.254.61055: P 31593:32241(648) ack 25 win 8736 (DF) 10:23:38.784273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 25:25(0) ack 32241 win 8760 (DF) 10:23:38.784273 > 10.4.165.254.61055 > 10.4.100.7.1643: P 25:29(4) ack 32241 win 8760 (DF) 10:23:38.804273 > 10.4.165.254.61055 > 10.4.100.7.1643: FP 29:33(4) ack 32241 win 8760 (DF) 10:23:38.804273 < 10.4.100.7.1643 > 10.4.165.254.61055: . 32241:32241(0) ack 34 win 8728 (DF) 10:23:38.814273 < 10.4.100.7.1643 > 10.4.165.254.61055: F 32241:32241(0) ack 34 win 8728 (DF) 10:23:38.814273 > 10.4.165.254.61055 > 10.4.100.7.1643: . 34:34(0) ack 32242 win 8760 (DF)

anonymous
SENDMAIL SQL
1С + САМБА = ГЛЮКИ!!!!!
Вы не можете добавлять комментарии в эту тему. Тема перемещена в архив.