Red Hat / Fedora :: NFS And Tcpdump Error In CentOS
Feb 15, 2010
I have configured NFS Server on CentOS 5.2 with an IBM Web Server(AIX). The IBM Web Server can upload all data onto NFS Server. Now, today i was having slow response on IBM Web Server & by measuring the NFS, I found below error while running "tcpdump" command. I have ran "tcpdump" command on NFS Server.
tcpdump -n -i eth1 | grep 2049
18:36:37.237451 IP 10.100.19.241.2049 > 10.100.19.88.1758143293: reply ok 1448 read [|nfs]
18:36:37.237476 IP 10.100.19.241.2049 > 10.100.19.88.539981409: reply ERR 1448
18:36:37.237481 IP 10.100.19.241.2049 > 10.100.19.88.796287348: reply ERR 1448
18:36:37.237488 IP 10.100.19.241.2049 > 10.100.19.88.1986098295: reply ERR 1448
18:36:37.237566 IP 10.100.19.241.2049 > 10.100.19.88.539762736: reply ERR 1448 .....
18:36:37.238263 IP 10.100.19.241.2049 > 10.100.19.88.1869440302: reply ERR 1448
16133 packets captured
23339 packets received by filter
7100 packets dropped by kernel
10.100.18.241 is the IP of NFS Server & 10.100.19.88 IP belongs to IBM Web Server.
View 1 Replies
ADVERTISEMENT
Feb 16, 2010
I have configured NFS Server on CentOS 5.2 with IBM Web Server,which is having AIX 5.3 The IBM Web Server can upload all data onto NFS Server. Now, Today i was having slow response on IBM Web Server & by measuring the NFS, i found below error while running "tcpdump" command on CentOS Server.
tcpdump -n -i eth1 | grep 2049
18:36:37.237451 IP 10.100.19.241.2049 > 10.100.19.88.1758143293: reply ok 1448 read [|nfs]
18:36:37.237476 IP 10.100.19.241.2049 > 10.100.19.88.539981409: reply ERR 1448
18:36:37.237481 IP 10.100.19.241.2049 > 10.100.19.88.796287348: reply ERR 1448
[code]....
I have changed Network Card in CentOS. All LAN is on Gigabit Network. Also I have changed the Network Cable(Patch Cord). But,still no response.
View 3 Replies
View Related
Jun 20, 2010
I am trying to install libpcap and tcpdump, but even if I have already installed Flex, as the terminal tells me to do. What else could I do?
Code:
configure: error: Your operating system's lex is insufficient to compile libpcap. Flex is a lex replacement that has many advantages, including being able to compile libpcap. For more information, see [URL].
View 1 Replies
View Related
Jan 6, 2011
I'm using Fedora9. I cannot start wireshark or tcpdump because of the lib dependency error:
Code:
[root@localhost ~]# wireshark
wireshark: error while loading shared libraries: libpcap.so.0.9: cannot open shared object file: No such file or directory
I updated libpcap before and the latest version is libpcap.so.1.1. I changed the version because of another application but I cannot remember when I did it, perhaps on Sep.11?
Code:
[root@localhost lib]# ll |grep libpcap
-rw-r--r-- 1 root root 309670 2010-09-11 08:10 libpcap.a
lrwxrwxrwx 1 root root 12 2010-09-11 08:10 libpcap.so -> libpcap.so.1
lrwxrwxrwx 1 root root 14 2010-09-11 08:10 libpcap.so.1 -> libpcap.so.1.1
-rwxr-xr-x 1 root root 243207 2010-09-11 08:10 libpcap.so.1.1
So I tried
Code:
ln -s libpcap.so.1.1 libpcap.so.0.9
but it doesn't work.
View 5 Replies
View Related
Apr 3, 2010
I am trying to install centos on two servers. The first a dell power edge p4 2.4 ghz 512 ram, the other is a supermicro with almost the exact specs. I tried to install the centos cd, using roxio to create the disk, (then just for measures tested the cd on my laptop and it loaded just fine into the centos install gui.) But it says media error when I try it on the dell and blue screens the other server. However if I put the windows cd in on both the servers, the windows install goes perfect. Apologies again if this is misplaces but I just joined the site and have had a difficult time trying to find where to post. What I am trying to do in the end is run web servers using apache.
View 6 Replies
View Related
May 13, 2010
I setup postfix and got that accepting emails without any problem. I tried to setup amavis to use ClamAV and spammAssasin and now i am not receiving emails. Mail log has multiple lines like the one bellow.
May 11 06:23:34 secure postfix/qmgr[21522]: warning: connect to transport amavis: Connection refused
View 1 Replies
View Related
Jun 25, 2010
I am trying to compile octave-3.2.4 with centos 5.5 and I get the following error
[code]...
I have looked and I can not find any solutions.
View 2 Replies
View Related
Apr 14, 2011
How to get manual of tcpdump?
View 2 Replies
View Related
Mar 1, 2011
I am running slackware-current and I have tcpdump-4.1.1-i486-1.txz installed. If I remember right libpcap used to be part of tcpdump, but since recently i cannot find it in my system anymore! Tools like nmap give me the error message:
"error while loading shared libraries: libpcap.so.1: cannot open shared object file: No such file or directory"
View 2 Replies
View Related
Sep 8, 2010
I'm trying to install Fedora 13 VM on my CentOS 5.5 64 bit install following the below link. I used this same process to install a CentOS 5.5 VM just to test the process. Now when I try to follow it making changes for Fedora Im getting an error.[URL] config file:
kernel = "/install/vm/fedora/vmlinuz"
ramdisk = "/install/vm/fedora/initrd.img"
name = "fedora13"
[code]...
In the CentOS link I posted it said to use kernel from the xen directory.Ive found out that the last fedora version that shipped with xen was fedora 8. Does anyone know where I can find a fedora 12/13 xen kernel? Ive searched google for hours and can not find a xen kernel. Actually I'm to the point where I would even use ubuntu or any similar distro if I could find a xen kernel.
View 2 Replies
View Related
Dec 7, 2010
I am trying to create a dump log using tcpdump. I want display the top 10 ip addresses sorted numerically showing how many times the ips are hitting the server. I'm getting frustrated because It's not working how I'd like it to.
View 1 Replies
View Related
Feb 16, 2011
Is there a way to do multiple interfaces in tcpdump? I have found that when using "-i any", not all packets are captured (compared to "-i eth0" on a machine with only one interface). I need to monitor traffic on some machines with as many as 6 interfaces, and get these packets that "-i any" misses. When I give the "-i" option multiple times, it seems to only use the last one.
View 3 Replies
View Related
Oct 18, 2010
I'm trying to capture packets to a file with the -w option but the file is empty yet if I use the '-w -' option to put data on stdout I see plenty of captured packets.I'm using CentOS 5.5 x86
Code:
[root@server ~]# tcpdump -v -i eth0 -w dump -s0
tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
[code]....
View 2 Replies
View Related
Jul 14, 2010
I am trying to analyze the output of tcpdump, but I am unable to figure out what the output is. as I think that the security my computer would be compromised by this output.
View 2 Replies
View Related
Nov 8, 2010
When attempting to run a tcdump in the background (IPSO) with the following command:
I get the message:
However the command runs fine without the '&' at the end of the line are there syntax restrictions in using the '&' flag?
View 2 Replies
View Related
Sep 2, 2010
I looked and have tcpdump installed on ubuntu 10.04 lts I can do a tcpdump --help and it gives the commands.I get no device found when I do tcpdump from the terminal window.my Ubuntu is having trouble looking up domains it just sits there and hangs looking up google.comI'm on a ATT 3mb DSL dry line running an asus netbook and a biostar via mobo desktop they both have trouble looking up domains right out of the DSL modem.I would try to set the DNS in ubuntu but I don't know how to do that without knowing the gateway and such. I have to get the IP of the computer, the netmask, the gateway, and the DNS for the manual setup.
View 3 Replies
View Related
Mar 15, 2011
I am trying to use a rig with Gigabyte GA-880GA-UD3H mother board and Intel 82574L based NIC (EXPI9301CTBLK) under CentOS 5.5. Unfortunately I have issue with the NIC - during boot it fails to initialize:
[Code]....
I receive the same result with the original e1000e driver from the distribution, the latest elrepo driver and the latest driver from Intel site (as seen in the example). I have tried also 2.6.37 kernel version - with the same result. The adapter however works fine under Windows (MiniXP from Hiren's BootCD) and with Ubuntu 10.10 LiveCD.
View 3 Replies
View Related
Aug 16, 2010
I'm in the process of creating local repos for our company servers (CentOS 5.5) and laptops (Fedora 13). And while the CentOS part went perfect the Fedora part is causing major trouble.But first things first, here's the setup: a central CentOS 5.5 server is running Apache2 and has a VirtualHost listening on Port 8080 for both CentOS and Fedora. The DocumentRoot for this VirtualHost is /data/repo wherein two directories, centos and fedora, reside.
This is the .repo-file for CentOS that works like a charm:
Quote:[local]
name=CentOS-$releasever - local packages for $basearch
[code]...
View 5 Replies
View Related
Apr 1, 2010
I was wondering how one could set up tcpdump to run in the background, dumping all output to a file until I terminate the process.Here is the dilema... I SSH into the box that will be listening (using tcpdump)...
ssh> sudo tcpdump -i eth0 > dump_file
yadda yadda...
then if I exit my ssh session, tcpdump closes.
If I do a...
ssh> sudo tcpdump -i eth0 > dump_file &
[1] 12938
yadda yadda.
View 7 Replies
View Related
Nov 17, 2010
I need to start a tcpdump, and then download a file by FTP. I can't understand any way of achieving this in the tcpdump man file.
View 1 Replies
View Related
Jan 28, 2011
I'm trying to capture traffic between two machines, A and B. I would like to make sure that the traffic I capture with tcpdump is between eth1 on the local machine and eth0 on the remote machine. As I understand it, the -i flag specifies the local machine interface - but how to set the remote one?
View 3 Replies
View Related
Dec 10, 2009
when i send any packet to anu destination and want to see he mac address of source and destination i am using the command tcpdump -qec1 but rather then getting the mac address of source and destination each time i am getting mac address of the system which is broadcasting. will anybody tell me how can i get source and destination mac address even if any other packet is also being broadcast to my network.
View 1 Replies
View Related
Apr 6, 2010
I would like to set up tcpdump to rotate log file every 1 hour and retain files for the lat 14 days but I don't think any combination of -C and -W would allow me to do that (Atleast I haven't been able to figure it out), so I am trying to rotate the files every X number of MB and retain the last 20 files. This seems to be fairly simple with the '-C X -W 20' option but I am having some trouble in customizing the names of the log files. I have tried '-w capture-$(date +%Y-%M-%d-%H:%M-)' thinking that each file would start with the current date and time but all files are using the date and time when the capture was started so the only difference is the number at the end (which is done by -W). if I can customize the names of the file so that it has the date and time when the capture in started. In fact if I can do that, I dont need the numbers that '-W' appends at the end but I dont know how to get rid of them.
View 4 Replies
View Related
May 27, 2010
I'm running NetWare SLES 10 sp3 with OES2 sp2. I was working with the folks at Novell to resolve an iPrint Print Manager problem.
During the process they wanted to perform a packet capture using tcpdump. While logged in as the root user the error no suitable device was found, and I received no data at all. This server is running on a VMWare Center. On other SLES 10 sp3 systems (residing on that same VMWre Center), tcpdump captures packets just fine. I inherited all of these servers, so I wasn't here during the initial build, but I'd make the guess that they were configured similarly. On a Server that I built recently, tcpdump works fine. On two of my Servers it does not, and gives the mentioned error.
It's not that big a deal, otherwise the Servers are communicating and working just fine. But, I'd like to get it working just because it's supposed to work. Students are off for the summer, so I have time to play.
View 5 Replies
View Related
Mar 11, 2010
Does gzip have the capability to decode gzipped traffic? I have been beating my head against the wall with this issue. What I'm trying to do is capture traffic between a web server and clients, and I've got it set up where it's redirected to a file for ease of grepping, however it's seemingly incapable of decoding gzipped encoding. I know I can do this with tshark, I'm curious as to whether tcpdump has this capability (i.e. only using tcpdump, and not some additional tool like tcpshow or what-not).
I can't find much on this issue in the man page for tcpdump, but it is fairly lengthy, so it's possible that I missed something, but I don't see that as especially likely.
View 2 Replies
View Related
Feb 2, 2010
I am attempting to install Xemacs-21.4.22 on Centos 5.4 and get the following error message when I attempt to... make install
..........
xlwmenu.c:39:28: error: X11/bitmaps/gray: No such file or directory
xlwmenu.c: In function 'XlwMenuInitialize':
xlwmenu.c:3015: error: 'gray_bits' undeclared (first use in this function)
xlwmenu.c:3015: error: (Each undeclared identifier is reported only once
xlwmenu.c:3015: error: for each function it appears in.)
xlwmenu.c:3016: error: 'gray_width' undeclared (first use in this function)
xlwmenu.c:3016: error: 'gray_height' undeclared (first use in this function)
make[1]: *** [xlwmenu.o] Error 1
I understand that there are some X11 bitmaps not included in Centos 5.4 however I have no idea how to install them.
View 6 Replies
View Related
Jan 24, 2011
The only window that's open is the terminal running this command, no pidgin, skype, samba, torrent or anything I can think of is using the network yet there is ***** load of output from tcpdump. I was hoping to use this to check where certain applications connect to and what messages they send but when I'm doing nothing there is already more output than I can go through. Running tcpdump for less than 10 seconds gives me the following output:
Code:
16:13:22.015683 IP ns.hihkptt.net.cn.domain > desk.local.56598: 46887 1/2/2 (166)
16:13:22.016251 IP ns.hihkptt.net.cn.domain > desk.local.60099: 21168 1/2/2 (166)
16:13:22.016743 IP ns.hihkptt.net.cn.domain > desk.local.42325: 50346 1/2/2 (166)
16:13:22.034733 IP ns.hihkptt.net.cn.domain > desk.local.41441: 63658 1/2/0 (134)
16:13:22.035215 IP ns.hihkptt.net.cn.domain > desk.local.42865: 37537 1/2/0 (134)
16:13:22.036124 IP ns.hihkptt.net.cn.domain > desk.local.35006: 7520 1/2/0 (134)
16:13:22.036569 IP ns.hihkptt.net.cn.domain > desk.local.38480: 51322 1/2/0 (134)
16:13:22.066006 ARP, Reply 192.168.0.1 is-at 00:b0:0c:02:60:9c (oui Unknown), length 46 .....
View 2 Replies
View Related
Jul 1, 2010
We are having a Linux box with Tcpdump continuously running on it to monitor bunch of sources. Separate Tcpdump process runs in a background for each host for monitoring traffic. I use -w option with it to save the capture in the pcap format to analyze it later. Now what I need is, if the Linux machine gets rebooted amidst of its packet capturing activity, I want tcpdump to automatically start the process again for every host without overwriting previous captures.
Remember: Without overwriting previous captures . . .
Basically, I will be keeping all the tcpdump commands in the shell script and will load the script at startup during the linux boot. Is there any way to achieve this case, where by on rebooting, Tcpdump does not overwrite previous captures?
View 2 Replies
View Related
Nov 21, 2010
I am trying dump some packets using tcpdump and it does not seem to be working.
System is fedora12
TCPDUMP v4.1
Libpcap v1.0
I even rolled my own,
TCPDUMP v4.1.1
libpcap v1.1.1
View 1 Replies
View Related
Apr 27, 2010
What is the syntax to capture packets from multiple host through tcpdumptcpdump ip host host1|host2|host3|host3
View 3 Replies
View Related
