Red Hat / Fedora :: NFS And Tcpdump Error In CentOS

Feb 15, 2010

I have configured NFS Server on CentOS 5.2 with an IBM Web Server(AIX). The IBM Web Server can upload all data onto NFS Server. Now, today i was having slow response on IBM Web Server & by measuring the NFS, I found below error while running "tcpdump" command. I have ran "tcpdump" command on NFS Server.

tcpdump -n -i eth1 | grep 2049
18:36:37.237451 IP 10.100.19.241.2049 > 10.100.19.88.1758143293: reply ok 1448 read [|nfs]
18:36:37.237476 IP 10.100.19.241.2049 > 10.100.19.88.539981409: reply ERR 1448
18:36:37.237481 IP 10.100.19.241.2049 > 10.100.19.88.796287348: reply ERR 1448
18:36:37.237488 IP 10.100.19.241.2049 > 10.100.19.88.1986098295: reply ERR 1448
18:36:37.237566 IP 10.100.19.241.2049 > 10.100.19.88.539762736: reply ERR 1448 .....

18:36:37.238263 IP 10.100.19.241.2049 > 10.100.19.88.1869440302: reply ERR 1448
16133 packets captured
23339 packets received by filter
7100 packets dropped by kernel
10.100.18.241 is the IP of NFS Server & 10.100.19.88 IP belongs to IBM Web Server.

View 1 Replies


ADVERTISEMENT

CentOS 5 Networking :: Tcpdump Error With NFS Port Sniffing

Feb 16, 2010

I have configured NFS Server on CentOS 5.2 with IBM Web Server,which is having AIX 5.3 The IBM Web Server can upload all data onto NFS Server. Now, Today i was having slow response on IBM Web Server & by measuring the NFS, i found below error while running "tcpdump" command on CentOS Server.

tcpdump -n -i eth1 | grep 2049
18:36:37.237451 IP 10.100.19.241.2049 > 10.100.19.88.1758143293: reply ok 1448 read [|nfs]
18:36:37.237476 IP 10.100.19.241.2049 > 10.100.19.88.539981409: reply ERR 1448
18:36:37.237481 IP 10.100.19.241.2049 > 10.100.19.88.796287348: reply ERR 1448

[code]....

I have changed Network Card in CentOS. All LAN is on Gigabit Network. Also I have changed the Network Cable(Patch Cord). But,still no response.

View 3 Replies View Related

Ubuntu :: Error Installing Libpcap And Tcpdump

Jun 20, 2010

I am trying to install libpcap and tcpdump, but even if I have already installed Flex, as the terminal tells me to do. What else could I do?

Code:
configure: error: Your operating system's lex is insufficient to compile libpcap. Flex is a lex replacement that has many advantages, including being able to compile libpcap. For more information, see [URL].

View 1 Replies View Related

General :: Library Dependency Error When Starting Wireshark / Tcpdump

Jan 6, 2011

I'm using Fedora9. I cannot start wireshark or tcpdump because of the lib dependency error:

Code:
[root@localhost ~]# wireshark
wireshark: error while loading shared libraries: libpcap.so.0.9: cannot open shared object file: No such file or directory

I updated libpcap before and the latest version is libpcap.so.1.1. I changed the version because of another application but I cannot remember when I did it, perhaps on Sep.11?

Code:
[root@localhost lib]# ll |grep libpcap
-rw-r--r-- 1 root root 309670 2010-09-11 08:10 libpcap.a
lrwxrwxrwx 1 root root 12 2010-09-11 08:10 libpcap.so -> libpcap.so.1
lrwxrwxrwx 1 root root 14 2010-09-11 08:10 libpcap.so.1 -> libpcap.so.1.1
-rwxr-xr-x 1 root root 243207 2010-09-11 08:10 libpcap.so.1.1

So I tried

Code:
ln -s libpcap.so.1.1 libpcap.so.0.9
but it doesn't work.

View 5 Replies View Related

Red Hat / Fedora :: Centos On Two Servers - Error When Trying To Install

Apr 3, 2010

I am trying to install centos on two servers. The first a dell power edge p4 2.4 ghz 512 ram, the other is a supermicro with almost the exact specs. I tried to install the centos cd, using roxio to create the disk, (then just for measures tested the cd on my laptop and it loaded just fine into the centos install gui.) But it says media error when I try it on the dell and blue screens the other server. However if I put the windows cd in on both the servers, the windows install goes perfect. Apologies again if this is misplaces but I just joined the site and have had a difficult time trying to find where to post. What I am trying to do in the end is run web servers using apache.

View 6 Replies View Related

Red Hat / Fedora :: Postix With Amavis Error Centos 5?

May 13, 2010

I setup postfix and got that accepting emails without any problem. I tried to setup amavis to use ClamAV and spammAssasin and now i am not receiving emails. Mail log has multiple lines like the one bellow.

May 11 06:23:34 secure postfix/qmgr[21522]: warning: connect to transport amavis: Connection refused

View 1 Replies View Related

Red Hat / Fedora :: Getting Error While Trying To Compile Octave-3.2.4 With Centos 5.5

Jun 25, 2010

I am trying to compile octave-3.2.4 with centos 5.5 and I get the following error

[code]...

I have looked and I can not find any solutions.

View 2 Replies View Related

General :: Get Manual Of Tcpdump?

Apr 14, 2011

How to get manual of tcpdump?

View 2 Replies View Related

Slackware :: No Libpcap.so In Tcpdump-4.1.1?

Mar 1, 2011

I am running slackware-current and I have tcpdump-4.1.1-i486-1.txz installed. If I remember right libpcap used to be part of tcpdump, but since recently i cannot find it in my system anymore! Tools like nmap give me the error message:

"error while loading shared libraries: libpcap.so.1: cannot open shared object file: No such file or directory"

View 2 Replies View Related

CentOS 5 :: Install Fedora 13 VM On 5.5 With Xen: Invalid Kernel Error

Sep 8, 2010

I'm trying to install Fedora 13 VM on my CentOS 5.5 64 bit install following the below link. I used this same process to install a CentOS 5.5 VM just to test the process. Now when I try to follow it making changes for Fedora Im getting an error.[URL] config file:

kernel = "/install/vm/fedora/vmlinuz"
ramdisk = "/install/vm/fedora/initrd.img"
name = "fedora13"

[code]...

In the CentOS link I posted it said to use kernel from the xen directory.Ive found out that the last fedora version that shipped with xen was fedora 8. Does anyone know where I can find a fedora 12/13 xen kernel? Ive searched google for hours and can not find a xen kernel. Actually I'm to the point where I would even use ubuntu or any similar distro if I could find a xen kernel.

View 2 Replies View Related

Networking :: How To Create Dump Log Using TCPdump

Dec 7, 2010

I am trying to create a dump log using tcpdump. I want display the top 10 ip addresses sorted numerically showing how many times the ips are hitting the server. I'm getting frustrated because It's not working how I'd like it to.

View 1 Replies View Related

Networking :: Using Multiple Interfaces For Tcpdump?

Feb 16, 2011

Is there a way to do multiple interfaces in tcpdump? I have found that when using "-i any", not all packets are captured (compared to "-i eth0" on a machine with only one interface). I need to monitor traffic on some machines with as many as 6 interfaces, and get these packets that "-i any" misses. When I give the "-i" option multiple times, it seems to only use the last one.

View 3 Replies View Related

Networking :: Tcpdump -w Not Writing Data?

Oct 18, 2010

I'm trying to capture packets to a file with the -w option but the file is empty yet if I use the '-w -' option to put data on stdout I see plenty of captured packets.I'm using CentOS 5.5 x86

Code:
[root@server ~]# tcpdump -v -i eth0 -w dump -s0
tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes

[code]....

View 2 Replies View Related

General :: Analyse The Output Of Tcpdump ?

Jul 14, 2010

I am trying to analyze the output of tcpdump, but I am unable to figure out what the output is. as I think that the security my computer would be compromised by this output.

View 2 Replies View Related

Software :: Running A Tcpdump In The Background ?

Nov 8, 2010

When attempting to run a tcdump in the background (IPSO) with the following command:

I get the message:

However the command runs fine without the '&' at the end of the line are there syntax restrictions in using the '&' flag?

View 2 Replies View Related

Software :: Tcpdump Says No Device Found?

Sep 2, 2010

I looked and have tcpdump installed on ubuntu 10.04 lts I can do a tcpdump --help and it gives the commands.I get no device found when I do tcpdump from the terminal window.my Ubuntu is having trouble looking up domains it just sits there and hangs looking up google.comI'm on a ATT 3mb DSL dry line running an asus netbook and a biostar via mobo desktop they both have trouble looking up domains right out of the DSL modem.I would try to set the DNS in ubuntu but I don't know how to do that without knowing the gateway and such. I have to get the IP of the computer, the netmask, the gateway, and the DNS for the manual setup.

View 3 Replies View Related

Red Hat / Fedora :: E1000e: Probe Of ... Failed With Error -2, CentOS 5.5 Intel 82574L

Mar 15, 2011

I am trying to use a rig with Gigabyte GA-880GA-UD3H mother board and Intel 82574L based NIC (EXPI9301CTBLK) under CentOS 5.5. Unfortunately I have issue with the NIC - during boot it fails to initialize:

[Code]....

I receive the same result with the original e1000e driver from the distribution, the latest elrepo driver and the latest driver from Intel site (as seen in the example). I have tried also 2.6.37 kernel version - with the same result. The adapter however works fine under Windows (MiniXP from Hiren's BootCD) and with Ubuntu 10.10 LiveCD.

View 3 Replies View Related

CentOS 5 Server :: Cannot Create Local Fedora 13 Repo: PYCURL ERROR 6

Aug 16, 2010

I'm in the process of creating local repos for our company servers (CentOS 5.5) and laptops (Fedora 13). And while the CentOS part went perfect the Fedora part is causing major trouble.But first things first, here's the setup: a central CentOS 5.5 server is running Apache2 and has a VirtualHost listening on Port 8080 for both CentOS and Fedora. The DocumentRoot for this VirtualHost is /data/repo wherein two directories, centos and fedora, reside.

This is the .repo-file for CentOS that works like a charm:

Quote:[local]
name=CentOS-$releasever - local packages for $basearch

[code]...

View 5 Replies View Related

Ubuntu Security :: Running TCPDump In The Background?

Apr 1, 2010

I was wondering how one could set up tcpdump to run in the background, dumping all output to a file until I terminate the process.Here is the dilema... I SSH into the box that will be listening (using tcpdump)...

ssh> sudo tcpdump -i eth0 > dump_file
yadda yadda...

then if I exit my ssh session, tcpdump closes.

If I do a...
ssh> sudo tcpdump -i eth0 > dump_file &
[1] 12938
yadda yadda.

View 7 Replies View Related

Applications :: Start TCPdump And Download File By FTP

Nov 17, 2010

I need to start a tcpdump, and then download a file by FTP. I can't understand any way of achieving this in the tcpdump man file.

View 1 Replies View Related

General :: Tcpdump Filtering Remote Interface?

Jan 28, 2011

I'm trying to capture traffic between two machines, A and B. I would like to make sure that the traffic I capture with tcpdump is between eth1 on the local machine and eth0 on the remote machine. As I understand it, the -i flag specifies the local machine interface - but how to set the remote one?

View 3 Replies View Related

General :: Finding Mac Address With Tcpdump Command?

Dec 10, 2009

when i send any packet to anu destination and want to see he mac address of source and destination i am using the command tcpdump -qec1 but rather then getting the mac address of source and destination each time i am getting mac address of the system which is broadcasting. will anybody tell me how can i get source and destination mac address even if any other packet is also being broadcast to my network.

View 1 Replies View Related

Networking :: Rotating Capture Files Using Tcpdump?

Apr 6, 2010

I would like to set up tcpdump to rotate log file every 1 hour and retain files for the lat 14 days but I don't think any combination of -C and -W would allow me to do that (Atleast I haven't been able to figure it out), so I am trying to rotate the files every X number of MB and retain the last 20 files. This seems to be fairly simple with the '-C X -W 20' option but I am having some trouble in customizing the names of the log files. I have tried '-w capture-$(date +%Y-%M-%d-%H:%M-)' thinking that each file would start with the current date and time but all files are using the date and time when the capture was started so the only difference is the number at the end (which is done by -W). if I can customize the names of the file so that it has the date and time when the capture in started. In fact if I can do that, I dont need the numbers that '-W' appends at the end but I dont know how to get rid of them.

View 4 Replies View Related

Networking :: Tcpdump - No Suitable Device Found?

May 27, 2010

I'm running NetWare SLES 10 sp3 with OES2 sp2. I was working with the folks at Novell to resolve an iPrint Print Manager problem.

During the process they wanted to perform a packet capture using tcpdump. While logged in as the root user the error no suitable device was found, and I received no data at all. This server is running on a VMWare Center. On other SLES 10 sp3 systems (residing on that same VMWre Center), tcpdump captures packets just fine. I inherited all of these servers, so I wasn't here during the initial build, but I'd make the guess that they were configured similarly. On a Server that I built recently, tcpdump works fine. On two of my Servers it does not, and gives the mentioned error.

It's not that big a deal, otherwise the Servers are communicating and working just fine. But, I'd like to get it working just because it's supposed to work. Students are off for the summer, so I have time to play.

View 5 Replies View Related

General :: Tcpdump Decode Gzip Packets?

Mar 11, 2010

Does gzip have the capability to decode gzipped traffic? I have been beating my head against the wall with this issue. What I'm trying to do is capture traffic between a web server and clients, and I've got it set up where it's redirected to a file for ease of grepping, however it's seemingly incapable of decoding gzipped encoding. I know I can do this with tshark, I'm curious as to whether tcpdump has this capability (i.e. only using tcpdump, and not some additional tool like tcpshow or what-not).

I can't find much on this issue in the man page for tcpdump, but it is fairly lengthy, so it's possible that I missed something, but I don't see that as especially likely.

View 2 Replies View Related

Fedora :: Installing Xemacs On Centos 5.4 - Error: X11/bitmaps/gray: No Such File Or Directory

Feb 2, 2010

I am attempting to install Xemacs-21.4.22 on Centos 5.4 and get the following error message when I attempt to... make install

..........
xlwmenu.c:39:28: error: X11/bitmaps/gray: No such file or directory
xlwmenu.c: In function 'XlwMenuInitialize':
xlwmenu.c:3015: error: 'gray_bits' undeclared (first use in this function)
xlwmenu.c:3015: error: (Each undeclared identifier is reported only once
xlwmenu.c:3015: error: for each function it appears in.)
xlwmenu.c:3016: error: 'gray_width' undeclared (first use in this function)
xlwmenu.c:3016: error: 'gray_height' undeclared (first use in this function)
make[1]: *** [xlwmenu.o] Error 1

I understand that there are some X11 bitmaps not included in Centos 5.4 however I have no idea how to install them.

View 6 Replies View Related

Ubuntu Networking :: Tcpdump Shows Lots Of Activity

Jan 24, 2011

The only window that's open is the terminal running this command, no pidgin, skype, samba, torrent or anything I can think of is using the network yet there is ***** load of output from tcpdump. I was hoping to use this to check where certain applications connect to and what messages they send but when I'm doing nothing there is already more output than I can go through. Running tcpdump for less than 10 seconds gives me the following output:

Code:
16:13:22.015683 IP ns.hihkptt.net.cn.domain > desk.local.56598: 46887 1/2/2 (166)
16:13:22.016251 IP ns.hihkptt.net.cn.domain > desk.local.60099: 21168 1/2/2 (166)
16:13:22.016743 IP ns.hihkptt.net.cn.domain > desk.local.42325: 50346 1/2/2 (166)
16:13:22.034733 IP ns.hihkptt.net.cn.domain > desk.local.41441: 63658 1/2/0 (134)
16:13:22.035215 IP ns.hihkptt.net.cn.domain > desk.local.42865: 37537 1/2/0 (134)
16:13:22.036124 IP ns.hihkptt.net.cn.domain > desk.local.35006: 7520 1/2/0 (134)
16:13:22.036569 IP ns.hihkptt.net.cn.domain > desk.local.38480: 51322 1/2/0 (134)
16:13:22.066006 ARP, Reply 192.168.0.1 is-at 00:b0:0c:02:60:9c (oui Unknown), length 46 .....

View 2 Replies View Related

Applications :: TCPdump Setup To Automatically Start Process Again

Jul 1, 2010

We are having a Linux box with Tcpdump continuously running on it to monitor bunch of sources. Separate Tcpdump process runs in a background for each host for monitoring traffic. I use -w option with it to save the capture in the pcap format to analyze it later. Now what I need is, if the Linux machine gets rebooted amidst of its packet capturing activity, I want tcpdump to automatically start the process again for every host without overwriting previous captures.

Remember: Without overwriting previous captures . . .
Basically, I will be keeping all the tcpdump commands in the shell script and will load the script at startup during the linux boot. Is there any way to achieve this case, where by on rebooting, Tcpdump does not overwrite previous captures?

View 2 Replies View Related

Networking :: Tcpdump Not Writing Raw Packets With Write Switch?

Nov 21, 2010

I am trying dump some packets using tcpdump and it does not seem to be working.

System is fedora12
TCPDUMP v4.1
Libpcap v1.0
I even rolled my own,
TCPDUMP v4.1.1
libpcap v1.1.1

View 1 Replies View Related

General :: Capture Packets From Multiple Host Through Tcpdump?

Apr 27, 2010

What is the syntax to capture packets from multiple host through tcpdumptcpdump ip host host1|host2|host3|host3

View 3 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved