[ale] still trying to figure it out
Geoffrey
esoteric at 3times25.net
Sun Aug 3 14:44:46 EDT 2003
David S. Jackson wrote:
>>I don't think the packet is getting dropped, since in both cases I see a
>>response from the dns server, it's just in one case it's successful, the
>>other 'no name' error. It's like the packet containing the name is
>>getting corrupted or something. Just enough so that it still get's handled.
>
>
>
> Well, I'm not that great with tcpdump, but what I get from
>
> sudo tcpdump -i ed0 -p src host 12.38.217.253.domain
>
> is
>
> tcpdump: listening on ed0
> 12:40:43.390113 12.38.217.253.domain > juno.dsj.net.55216: 4* 0/1/0 (83) (DF)
>
> I wonder if there's a way to really see what's inside the packet?
What I do is send tcpdump output to a file (tcpdump -w output), then
read it back in with ethereal. Seems I might be able to take advantage
of some of the -d* options of tcpdump though.
--
Until later: Geoffrey esoteric at 3times25.net
The latest, most widespread virus? Microsoft end user agreement.
Think about it...
_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale
More information about the Ale
mailing list