search for: snif

...the interfaces generated by the bridge itself. If you have vlan tagged sub interfaces you might also miss that traffic if you were snooping a particular interface. Obviously you will miss any on-wire broadcast traffic specific to the layer1 connection a particular interface was connected to if you sniff on an individual device. Basically unless you are trying to trouble shoot a physical link issue I would likely always use the container link when doing a packet dump, due to several edge cases. If your bridge node host is participating (i.e has an IP etc on the br0 device itself , rather than in...

Hi all Assume that you have a linux bridge with two interfaces eth0 and eth1 enslaved to this bridge What is the difference between sniffing the bridge and sniffing its interfaces? tcpdump -i br0 vs tcpdump -i eth0 Thanks MiniME -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.linuxfoundation.org/pipermail/bridge/attachments/20150216/745ade7e/attachment-0004.html>

...nt a dedicated server that listens to a mirror port and records calls. Is there a cheap software package out there for doing this for mgcp/sccp? I know if evern cut over to * there is a way but I doubt I will even cut 100% over to * so I was wonder what the list has heard of for call recording via sniffing my gates. I know there are some out there but $100k for 40 users is to high for my blood. Offlist is fine for all flames and answers since this is a bit off topic lists@efastfunding.com OK it's a Monday when it takes 5 tries to get a email to the right list from the right account. Eit...

Hello, I am trying to understand how Tor protect to ISP sniffing in proxy. I suppose this steps: 1) Dowload Tor software, software should signed or downloaded from SSL site. 2) Computer software verify that software is not modified, and install it. 3) Vidalia starts tunnel, At this point how keys are exchanged? ... -- -- Devel in Precio http://www.pas-...

Hi all, In light of issue #2666 ( https://github.com/networkupstools/nut/issues/2666#issue-2623441838), I "sniffed" USB traffic from APC's `PowerChute Serial Shutdown` software (with the help of this guide (https://www.youtube.com/watch?v=0MC-D_oNzbk)). I hope to be able to find out the shutdown command for my APC "Back-UPS BX750MI FW:295202G -302202G". APC's `PowerChute Serial Shutdow...

...the same "PEM passphrase" on both the central (at our office) and the remote asterisk? Or can the remote one just do "init keys" or "asterisk -i" without needing anything else. I understand the key has to be copied over there. 2. What's to stop someone from sniffing and spoofing the data coming from a remote Asterisk just as easily as a plaintext password. Could Joe Blow set up an Asterisk at his house, and give it the same public key, and it would register as whichever one he wanted (assuming he could guess an installation name). 3. What informatio...

Hello all, I want to sniff all these info to test a sip ip phone talking to a asterisk server. I have used tcpdump, but It just shows the UDP, length: 602 Anyway to see the sip uri. Host info? Regards, Dinesh. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.dig...

Hi, In a libvirt/KVM setup, what is the best way to prevent untrusted guest machines from (a) sending packets with a sender address different from their own and (b) reading packets not intended for them? Note that guests may have any number of IP addresses they are allowed to use legitimately. Guido -- Too much multitasking isn't good for you.

Any suggestions on what to run on a centos box to verify that the server isn't compromised or being sniffed? Thanks!

...pxelinux.0 to lpxelinux.0 as a PXE boot loader. With pxelinux.0 I am able to boot my Linux kernel and initrd without any problems. When I change DHCP option 67 to lpxelinux.0 this file gets loaded via TFTP. On the client screen I see the welcome message (PXELINUX 6.03 lwIP ?) but nothing more. Sniffing revealed that there are no further attempts to load anything. I expected lpxelinux.0 to load the same configuration file as pxelinux.0, either by TFTP or HTTP. This is from my default config file: KERNEL http://172.16.0.96/boot/vmlinuz APPEND initrd=http://172.16.0.96/boot/initrd What am I...

How i can classify sip traffic (voip)?? I try dst 5060 udp port, but dont''work. sip sesion use dynamic port. Sniffing packets with windows net-peeker, I see that packets lenghts is always=87 How i can filter, by packet lenght, with u32? Regards Fabian

Most of you have needed at one time or another to sniff network traffic for trouble shooting purposes. Today I noticed that one of my SIP phone's web interface worked much faster with Opera, so I wanted to see what exactly was going on. I set up Wireshark and toook a look, but I got distracted by the fact that I saw a bunch of strange things comin...

...3. Is this a distribution build or fresh from the > binary/source archive from kernel.org without any running of 'make'? it's actually a freshly downloaded lpxelinux.0 from kernel.org. I get: $ md5sum lpxelinux.0 d77a175ea1a0a8c05b315d179992e1bd lpxelinux.0 >> nothing more. Sniffing revealed that there are no further attempts to load >> anything. > > Where/how are you sniffing? I'm guessing from the system with the > tftpd? pxelinux.0 and lpxelinux.0 should both load ldlinux.c32 next > then try for configuration file. Which file was last attempted?...

Hi, I have a Centos5 machine running xen 3.0.3-41 with two NICs each on its own subnet: 192.168.1.x and 192.168.0.x. All DomUs can talk to each other OK through two xen bridges. There are 3 DomUs: Dom0, Dom1 and Dom2 The scenario: I''m trying to capture packets on Dom2 on 192.168.0.x from external devices that are sending SIP stuff to Dom1, but fail to capture any packets. I

On Tuesday 02 March 2004 02:23, Michael Smith wrote: > Shoutcast just does user-agent sniffing. This makes it look like you can't > download the stream easily, but that's just misleading you - it's > completely trivial to do so. Yes , i'd say the same . > > The most clean solution in my eyes would be to implement mms:// or > > rtp:// for mp3/ogg-stream...

> Hi all, > Is samba implments CIFS. > I thought CIFS is based on SMB > am assuming SMB is opensource protocol > Just wondering if am running samba 2.2.5 does it mean am running CIFS > also what version of CIFS? > when i sniffing SMB packets which commands should i be looking at CIFS or SMB > > thanks in advance

Hi, I know this has been discussed before - but I don't think that we've come to a "clean" solution. So let me try to ask again: Is there any good way with icecast to prevent browsers / wget's / ... from capturing a stream? I mean, using Shoutcast afaik it's not *that* easily possible to download a stream. But using Icecast you can simply do a wget and grab the

I played around tonight for a while trying to place a call to the answering machine at FWD. It didn't work. I sniffed the connection, and it looks like asterisk sends out an invite. The gateway at FWD then sends an Invite back, and then asterisk responds with a "482 Loop Detected" error message. I have attached the output of a sip debug for this session. Contents of the appropriate context: [fwd...

Hi all, I'm writing my graduation theses : analysis VO-IP protocols , and I cannot find any documents about Cisko Skinny Client Control Protocol. I have Cisco CallManager and some IP-phone and I'm sniffing traffic between that, but I don't understand, how this protocol works. Clearly i'm looking for description of SCCP commands and explanation some basic SCCP scenarios or what including SCCP packets ... I have a lot of alredy information about SIP,H323 and others, but about SCCP nothi...

>Thereby sorry for being impolite :-(, but at present I'm running samba >3.0.1pre1 with ldapsam in the production servers, >and Win9x clients couldn't get list of users and groups from Samba DCs (Bug596). I have 3 >choices: >- -- Switch back to 2.2.7 (not very nice:-(, I would need group support for policy) >- -- Switch to tdbsam with fam/rsync/ssh-ing password and group