Hi,
Youa re using dst host and src host that’s why.
To see both direction between thiese hosts try tcpdump
-i eth0 -s 1500 -w dump host 192.168.0.1 and host www.example.com
This way you will have only host to host conversation both direction.
Regards.
===========================================
André Noël
Analyste principal - protocoles
De :
wireshark-users-bounces@xxxxxxxxxxxxx
[mailto:wireshark-users-bounces@xxxxxxxxxxxxx] De la part de Kaushal Shriyan
Envoyé : May 18, 2007 9:22
À : Community support list
for Wireshark
Objet : [Wireshark-users]
tcpdump command
Hi
I have to capture network traffic between an appliance and content server using
tcpdump command and then dump to a file and read and decode it using wireshark
How do i proceed
I have used tcpdump -i eth0 -s 1500 -w dump src host 192.168.0.1 and dst host www.example.com
when i read the dump capture file using wireshark i could only see packets
being sent from src host to destination host, I could not see any packets being
sent from destination host to src host.
Please let me know what I am doing wrong.
Thanks and Regards
Kaushal
