Portál AbcLinuxu, 26. dubna 2024 01:24
[root@hroch jacqo]# tcpdump tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on eth1, link-type EN10MB (Ethernet), capture size 96 bytes 17:20:38.809109 IP 205.188.8.86.5190 > 10.78.139.174.55487: P 4158303159:4158303355(196) ack 2843515475 win 16384 17:20:38.809134 IP 10.78.139.174.55487 > 205.188.8.86.5190: . ack 196 win 32767 17:20:38.809758 IP 10.78.139.174.55487 > 205.188.8.86.5190: P 1:106(105) ack 196 win 32767 17:20:38.899603 IP 10.78.139.174.32774 > 81.127.192.33.domain: 40841+ PTR? 174.139.78.10.in-addr.arpa. (44) 17:20:38.953080 IP 205.188.8.86.5190 > 10.78.139.174.55487: . ack 106 win 16384 17:20:40.146353 arp who-has 84.242.66.53 tell 84.242.66.1 17:20:40.205020 IP 205.188.8.86.5190 > 10.78.139.174.55487: P 196:501(305) ack 106 win 16384 17:20:40.244903 IP 10.78.139.174.55487 > 205.188.8.86.5190: . ack 501 win 32767 17:20:41.701037 IP 205.188.8.86.5190 > 10.78.139.174.55487: P 501:806(305) ack 106 win 16384 17:20:41.701064 IP 10.78.139.174.55487 > 205.188.8.86.5190: . ack 806 win 32767 17:20:43.643022 IP 10.78.139.174.32775 > 81.127.192.33.domain: 21726+ AAAA? wpad. (22) 17:20:43.899248 IP 10.78.139.174.32776 > 81.127.192.97.domain: 40841+ PTR? 174.139.78.10.in-addr.arpa. (44) 17:20:45.714788 IP baym-cs185.msgr.hotmail.com.1863 > 10.78.139.174.38116: P 2738277219:2738277247(28) ack 2833082955 win 65019 17:20:45.714814 IP 10.78.139.174.38116 > baym-cs185.msgr.hotmail.com.1863: . ack 28 win 2264 < 4294778060 23426765> 17:20:45.715340 IP 10.78.139.174.38116 > baym-cs185.msgr.hotmail.com.1863: P 1:61(60) ack 28 win 2264 17:20:45.926133 IP baym-cs185.msgr.hotmail.com.1863 > 10.78.139.174.38116: . ack 61 win 65535 < 23426768 4294778060> 17:20:45.926813 IP baym-cs185.msgr.hotmail.com.1863 > 10.78.139.174.38116: P 28:36(8) ack 61 win 65535 < 23426768 4294778060> 17:20:45.966828 IP 10.78.139.174.38116 > baym-cs185.msgr.hotmail.com.1863: . ack 36 win 2264 < 4294778312 23426768> 17:20:46.366817 IP 10.78.139.174.netbios-dgm > 10.255.255.255.netbios-dgm: NBT UDP PACKET(138) 17:20:46.900248 IP 10.78.139.174.32768 > b.root-servers.net.domain: 52707 [1au] PTR? 174.139.78.10.in-addr.arpa. (55) 17:20:47.088206 IP b.root-servers.net.domain > 10.78.139.174.32768: 52707- 0/2/1 (115) 17:20:47.089491 IP 10.78.139.174.32768 > tld6.ultradns.co.uk.domain: 28397% [1au] A? BLACKHOLE-1.IANA.ORG. (49) 17:20:47.089643 IP 10.78.139.174.32768 > tld6.ultradns.co.uk.domain: 30044% [1au] AAAA? BLACKHOLE-1.IANA.ORG. (49) 17:20:47.089782 IP 10.78.139.174.32768 > tld6.ultradns.co.uk.domain: 56602% [1au] A? BLACKHOLE-2.IANA.ORG. (49) 17:20:47.089915 IP 10.78.139.174.32768 > tld6.ultradns.co.uk.domain: 30556% [1au] AAAA? BLACKHOLE-2.IANA.ORG. (49) 17:20:47.124594 IP tld6.ultradns.co.uk.domain > 10.78.139.174.32768: 28397- 0/7/2 (256) 17:20:47.125395 IP 10.78.139.174.32768 > ns.icann.org.domain: 56730% [1au] A? BLACKHOLE-1.IANA.ORG. (49) 17:20:47.125892 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 61133% [1au] A? a.iana-servers.net. (47) 17:20:47.126108 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 6839% [1au] AAAA? a.iana-servers.net. (47) 17:20:47.126340 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 7668% [1au] A? c.iana-servers.net. (47) 17:20:47.126567 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 50949% [1au] AAAA? c.iana-servers.net. (47) 17:20:47.126923 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 63645% [1au] A? rip.psg.com. (40) 17:20:47.127145 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 47309% [1au] AAAA? rip.psg.com. (40) 17:20:47.139463 IP tld6.ultradns.co.uk.domain > 10.78.139.174.32768: 56602- 0/7/2 (256) 17:20:47.139561 IP tld6.ultradns.co.uk.domain > 10.78.139.174.32768: 30044- 0/7/2 (256) 17:20:47.139948 IP 10.78.139.174.32768 > ns.icann.org.domain: 7938% [1au] A? BLACKHOLE-2.IANA.ORG. (49) 17:20:47.140395 IP 10.78.139.174.32768 > ns.icann.org.domain: 34778% [1au] AAAA? BLACKHOLE-1.IANA.ORG. (49) 17:20:47.140880 IP tld6.ultradns.co.uk.domain > 10.78.139.174.32768: 30556- 0/7/2 (256) 17:20:47.141262 IP 10.78.139.174.32768 > ns.icann.org.domain: 50157% [1au] AAAA? BLACKHOLE-2.IANA.ORG. (49) 17:20:47.313822 IP ns.icann.org.domain > 10.78.139.174.32768: 56730 FormErr- [0q] 0/0/0 (12) 17:20:47.314012 IP 10.78.139.174.32768 > ns.icann.org.domain: 4798% A? BLACKHOLE-1.IANA.ORG. (38) 17:20:47.318289 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 61133 FormErr- [0q] 0/0/0 (12) 17:20:47.318390 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 6839 FormErr- [0q] 0/0/0 (12) 17:20:47.318419 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 50949 FormErr- [0q] 0/0/0 (12) 17:20:47.318448 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 7668 FormErr- [0q] 0/0/0 (12) 17:20:47.318486 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 17589% A? a.iana-servers.net. (36) 17:20:47.318679 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 32040% AAAA? a.iana-servers.net. (36) 17:20:47.318778 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 24370% AAAA? c.iana-servers.net. (36) 17:20:47.318870 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 38883% A? c.iana-servers.net. (36) 17:20:47.325966 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 47309 FormErr- [0q] 0/0/0 (12) 17:20:47.326067 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 63645 FormErr- [0q] 0/0/0 (12) 17:20:47.326333 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 25219% AAAA? rip.psg.com. (29) 17:20:47.326429 IP 10.78.139.174.32768 > e.gtld-servers.net.domain: 21242% A? rip.psg.com. (29) 17:20:47.339782 IP ns.icann.org.domain > 10.78.139.174.32768: 34778 FormErr- [0q] 0/0/0 (12) 17:20:47.339888 IP ns.icann.org.domain > 10.78.139.174.32768: 50157 FormErr- [0q] 0/0/0 (12) 17:20:47.339916 IP ns.icann.org.domain > 10.78.139.174.32768: 7938 FormErr- [0q] 0/0/0 (12) 17:20:47.340012 IP 10.78.139.174.32768 > ns.icann.org.domain: 54417% AAAA? BLACKHOLE-1.IANA.ORG. (38) 17:20:47.340163 IP 10.78.139.174.32768 > ns.icann.org.domain: 52338% AAAA? BLACKHOLE-2.IANA.ORG. (38) 17:20:47.340228 IP 10.78.139.174.32768 > ns.icann.org.domain: 26169% A? BLACKHOLE-2.IANA.ORG. (38) 17:20:47.503333 IP ns.icann.org.domain > 10.78.139.174.32768: 4798*- 1/7/8 A blackhole-1.iana.org (363) 17:20:47.503840 IP 10.78.139.174.32768 > blackhole-1.iana.org.domain: 30622 [1au] PTR? 174.139.78.10.in-addr.arpa. (55) 17:20:47.514628 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 32040- 0/4/5 (199) 17:20:47.514821 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 38883- 1/4/5 A c.iana-servers.net (215) 17:20:47.514924 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 24370- 0/4/5 (199) 17:20:47.514961 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 17589- 1/4/5 A a.iana-servers.net (215) 17:20:47.515266 IP 10.78.139.174.32768 > a.iana-servers.net.domain: 56776% [1au] AAAA? a.iana-servers.net. (47) 17:20:47.515868 IP 10.78.139.174.32768 > a.iana-servers.net.domain: 30474% [1au] AAAA? c.iana-servers.net. (47) 17:20:47.541517 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 25219- 0/3/1 (120) 17:20:47.541617 IP e.gtld-servers.net.domain > 10.78.139.174.32768: 21242- 1/3/1 A rip.psg.com (136) 17:20:47.541712 IP ns.icann.org.domain > 10.78.139.174.32768: 52338*- 0/1/0 (96) 17:20:47.541771 IP ns.icann.org.domain > 10.78.139.174.32768: 54417*- 0/1/0 (96) 17:20:47.541824 IP ns.icann.org.domain > 10.78.139.174.32768: 26169*- 1/7/8 A blackhole-2.iana.org (363) 17:20:47.542351 IP 10.78.139.174.32768 > rain.psg.com.domain: 15237% [1au] AAAA? rip.psg.com. (40) 17:20:47.542950 IP 10.78.139.174.32768 > d.root-servers.net.domain: 37991% [1au] A? dns.library.ucla.edu. (49) 17:20:47.543189 IP 10.78.139.174.32768 > d.root-servers.net.domain: 42849% [1au] AAAA? dns.library.ucla.edu. (49) 17:20:47.543431 IP 10.78.139.174.32768 > d.root-servers.net.domain: 45800% [1au] A? arizona.edu. (40) 17:20:47.543687 IP 10.78.139.174.32768 > d.root-servers.net.domain: 44279% [1au] AAAA? arizona.edu. (40) 17:20:47.568851 IP blackhole-1.iana.org.domain > 10.78.139.174.32768: 30622 NXDomain*- 0/1/1 (132) 17:20:47.569503 IP 10.78.139.174.32779 > 81.127.192.33.domain: 3901+ PTR? 86.8.188.205.in-addr.arpa. (43) 17:20:47.677063 IP d.root-servers.net.domain > 10.78.139.174.32768: 37991- 0/8/9 (322) 17:20:47.678428 IP d.root-servers.net.domain > 10.78.139.174.32768: 42849- 0/8/9 (322) 17:20:47.678449 IP 10.78.139.174.32768 > l3.NSTLD.COM.domain: 45096% [1au] A? dns.library.ucla.edu. (49) 17:20:47.678469 IP d.root-servers.net.domain > 10.78.139.174.32768: 45800- 0/8/9 (313) 17:20:47.678508 IP d.root-servers.net.domain > 10.78.139.174.32768: 44279- 0/8/9 (313) 17:20:47.679737 IP 10.78.139.174.32768 > l3.NSTLD.COM.domain: 55316% [1au] AAAA? dns.library.ucla.edu. (49) 17:20:47.680166 IP 10.78.139.174.32768 > l3.NSTLD.COM.domain: 60426% [1au] A? arizona.edu. (40) 17:20:47.680670 IP 10.78.139.174.32768 > l3.NSTLD.COM.domain: 31533% [1au] AAAA? arizona.edu. (40) 17:20:47.709796 IP a.iana-servers.net.domain > 10.78.139.174.32768: 56776*- 0/1/1 (108) 17:20:47.710793 IP a.iana-servers.net.domain > 10.78.139.174.32768: 30474*- 0/1/1 (108) 17:20:47.718637 IP rain.psg.com.domain > 10.78.139.174.32768: 15237* 0/1/1 (92) 17:20:47.810297 IP l3.NSTLD.COM.domain > 10.78.139.174.32768: 55316- 0/4/5 (198) 17:20:47.810545 IP l3.NSTLD.COM.domain > 10.78.139.174.32768: 60426- 0/4/5 (193) 17:20:47.810641 IP l3.NSTLD.COM.domain > 10.78.139.174.32768: 31533- 0/4/5 (193) 17:20:47.810683 IP l3.NSTLD.COM.domain > 10.78.139.174.32768: 45096- 0/4/5 (198) 17:20:47.811007 IP 10.78.139.174.32768 > dns3.ucla.edu.domain: 11876% [1au] AAAA? dns.library.ucla.edu. (49) 17:20:47.812085 IP 10.78.139.174.32768 > optima.cs.arizona.edu.domain: 52193% [1au] A? arizona.edu. (40) 17:20:47.812349 IP 10.78.139.174.32768 > optima.cs.arizona.edu.domain: 41930% [1au] AAAA? arizona.edu. (40) 17:20:47.812643 IP 10.78.139.174.32768 > dns3.ucla.edu.domain: 10461% [1au] A? dns.library.ucla.edu. (49) 17:20:47.993859 IP optima.cs.arizona.edu.domain > 10.78.139.174.32768: 52193*- 2/5/5 A Maggie.telcom.arizona.edu, (252) 17:20:47.994254 IP optima.cs.arizona.edu.domain > 10.78.139.174.32768: 41930*- 0/1/1 (87) 17:20:48.007140 IP dns3.ucla.edu.domain > 10.78.139.174.32768: 11876*- 0/1/1 (90) 17:20:48.007706 IP dns3.ucla.edu.domain > 10.78.139.174.32768: 10461*- 1/5/5 A gaskell.library.ucla.edu (222) 17:20:48.642366 IP 10.78.139.174.32780 > 81.127.192.97.domain: 21726+ AAAA? wpad. (22) 17:20:49.525973 IP 10.78.139.174.32781 > 81.127.192.33.domain: 58438+ AAAA? www.google.com. (32) 17:20:50.220898 arp who-has bno-84-242-66-3.karneval.cz tell 84.242.66.1 17:20:51.644310 IP 10.78.139.174.32768 > E.ROOT-SERVERS.NET.domain: 15948 [1au] AAAA? wpad. (33) 17:20:51.837250 IP E.ROOT-SERVERS.NET.domain > 10.78.139.174.32768: 15948 NXDomain*- 0/1/1 (108) 17:20:51.837890 IP 10.78.139.174.32782 > 81.127.192.33.domain: 26900+ A? wpad. (22) 17:20:52.325622 arp who-has bno-84-242-66-30.karneval.cz tell 84.242.66.1 17:20:52.570623 IP 10.78.139.174.32783 > 81.127.192.97.domain: 3901+ PTR? 86.8.188.205.in-addr.arpa. (43) 17:20:54.526320 IP 10.78.139.174.32784 > 81.127.192.97.domain: 58438+ AAAA? www.google.com. (32) 17:20:55.949861 IP 10.78.139.174.32785 > 81.127.192.33.domain: 32438+ PTR? 33.192.127.81.in-addr.arpa. (44) 17:20:56.838818 IP 10.78.139.174.32786 > 81.127.192.97.domain: 26900+ A? wpad. (22) 17:20:57.527319 IP 10.78.139.174.32768 > f.gtld-servers.net.domain: 7700 [1au] AAAA? www.google.com. (43) 17:20:57.702821 IP 10.78.139.174.32768 > f.gtld-servers.net.domain: 36618 AAAA? www.google.com. (32) 17:20:57.891470 IP 10.78.139.174.32768 > ns3.google.com.domain: 25560 [1au] AAAA? www.google.com. (43) 17:20:58.015240 IP 10.78.139.174.32768 > ns2.google.com.domain: 22715 [1au] AAAA? www.l.google.com. (45) 17:20:59.839882 IP 10.78.139.174.32788 > 81.127.192.33.domain: 11853+ AAAA? wpad. (22) 17:21:00.016400 IP 10.78.139.174.32768 > ns1.google.com.domain: 38985 [1au] AAAA? www.l.google.com. (45) 17:21:04.284017 IP 10.78.139.174.32791 > 81.127.192.33.domain: 6140+ PTR? 53.66.242.84.in-addr.arpa. (43) 17:21:04.335895 IP 10.78.139.174.55487 > 205.188.8.86.5190: P 106:272(166) ack 806 win 32767 17:21:04.469178 IP 10.78.139.174.55487 > 205.188.8.86.5190: . ack 842 win 32767 17:21:04.840311 IP 10.78.139.174.32792 > 81.127.192.97.domain: 11853+ AAAA? wpad. (22) 17:21:05.042238 IP 10.78.139.174.55487 > 205.188.8.86.5190: . ack 1082 win 32767 17:21:05.343263 IP 10.78.139.174.32794 > 81.127.192.97.domain: 52146+ A? www.google.com. (32) 17:21:20.452222 IP 10.78.139.174.32800 > 81.127.192.33.domain: 10509+ PTR? 97.192.127.81.in-addr.arpa. (44) 17:21:25.452429 IP 10.78.139.174.32801 > 81.127.192.97.domain: 10509+ PTR? 97.192.127.81.in-addr.arpa. (44) 17:21:25.970293 arp who-has 10.7.156.33 tell 10.78.139.174 128 packets captured 4268 packets received by filter 3709 packets dropped by kernel
Tiskni Sdílej:
ISSN 1214-1267, (c) 1999-2007 Stickfish s.r.o.