What helped the most was the suggestion to use the -w filename switch
then use strings to display the file, which quickly told me that
the printer was sent the appropriate info, now I need to look
at why the printer isn't doing what I expected it to. (Now it
might be a PCL programming issue - as I'm sending raw PCL codes.
No filters are being used).
Other suggestions were to use the -s <len> switch, which on the
surface didn't do anything to help display the data, however, I'm
assuming that if I increase the packet scan length, there is less
chance I will lose data going into the file (using the -w switch)
Also suggested:
To use the -x option to display hex dump.
use ethreal from freshmeat.com (I didn't look for yet, as the above
help enough at this point).
I've found tcpflow to be a spiffy way of viewing TCP sessions as they
happen:
http://www.circlemud.org/~jelson/software/tcpflow/
Requires libpcap
Thanks to those who responded. I was thinking there was a switch in
tcpdump that displayed Hex on left side and the ASCII on the right
in 16 byte blocks.
George
>-----Original Message-----
>From: George Gallen [mailto:ggallen_at_slackinc.com]
>Sent: Friday, October 27, 2000 5:06 PM
>To: 'tru64-unix-managers_at_ornl.gov'
>Subject: tcpdump question
>
>
>I'm running tcpdump 3.4a7 in promisc mode. Is there a switch
>that will allow
>viewing of
>the actual data within the packets?
>
>This is on a linux machine. I'm trying to figure out if the
>data (a print
>job) is corrupt coming
>out of alpha 2100 or if it's getting corrupted in the linux
>machine, or if
>packets are getting
>dropped.
>
>Thanks
>George
>
>Unfortunatly, the man pages that came with tcpdump on this machine are
>missing, I only
>the binary of the program. (the bpf libraries are loaded, and
>I know the
>program works for
>viewing the packet ID's, now I need to check the actual data).
>
>George Gallen
>Senior Programmer/Analyst
>Accounting/Data Division
>ggallen_at_slackinc.com
>ph:856.848.1000 Ext 220
>
>SLACK Incorporated - An innovative information, education and
>management
>company
>http://www.slackinc.com
>
Received on Mon Oct 30 2000 - 15:11:31 NZDT