Thanks to arnaud valeix for the quick answer to my query.
To see traffic to/from my host I need to use pfconfig as described below
to configure the network card, instead of ifconfig, before using tcpdump.
Thanks,
Bob
---------- Forwarded message ----------
Date: Wed, 19 May 1999 13:17:56 +0200
From: arnaud valeix <arnaud.valeix_at_sncf.fr>
To: Bob Parkinson <rwplists_at_omni.ac.uk>
Subject: Re: tcpdump query
Bob Parkinson wrote:
>
> I'm having problems with tcpdump.
Hello
Did you try this, it should work
pfconfig -a +promisc +copyall -b 255
+copyall is very important for your own traffic
Hope this help
Arnaud VALEIX
>
> I've set the interface into promisc mode, and when I run tcpdump I get
> reams of output.
>
> When I add some parameters to try and cut down the amount
> of output (tcpdump host omni.ac.uk port 80) I get no output at all. This
> is running on host omni.ac.uk, and there _is_ plenty of traffic tcpdump
> should be getting, (I can see it in my apache logs).
>
> It seems that I am able to see 'third party' traffic, that does not
> involve my nachine, but nothing destined to or from my host.
>
> Does anyone know what I'm missing here?
>
> Thanks,
>
> Bob
Received on Wed May 19 1999 - 11:41:54 NZST