tcpdump on port 25
Bill Campbell
linux-sxs
Mon May 17 12:00:23 PDT 2004
You would probably find that the ``tcpflow'' program is far better than
tcpdump for debugging things like sendmail, POP, and IMAP problems. Its
command syntax is virtually identical to tcpdump, but instead of dumping
all traffic to stdout, it separates each tcp connection into a file, making
it fairly easy to see the conversations.
On Mon, Mar 08, 2004, Matthew Carpenter wrote:
>tcpdump -s 1600 -i eth0 -w - port 25
>
>-s 1600 means that it will dump the whole 1500bytes Ethernet can handle
>-w - means it will write the binary to STOUT (don't worry, you get
>garbage and then the text, etc...)
>
>if -w - isn't good for you, -w <filename> then use Ethereal to dig
>deeply into the dump.
>
>
>M.W. Chang wrote:
>
>>I was debugging a program that talks to sendmail, and couldn't figured
>>out the best tcpdump options to use. Here what I used:
>>
>>tcpdump -i eth0 -X tcp port 25
>>
>>However, some request/response were not shown completely.
>>
>>
>>
>_______________________________________________
>Linux-users mailing list
>Linux-users at smtp.linux-sxs.org
>Unsubscribe/Suspend/Etc ->
>http://smtp.linux-sxs.org/mailman/listinfo/linux-users
>
--
Bill
--
INTERNET: bill at Celestial.COM Bill Campbell; Celestial Software LLC
UUCP: camco!bill PO Box 820; 6641 E. Mercer Way
FAX: (206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676
URL: http://www.celestial.com/
``Liberty don't work as good in practice as it does in speeches.''
Will Rogers
More information about the Linux-users
mailing list