Vyvojari netfilteru rikaji, ze:
"tcpdump will see the packets before IPTables does anything to them"
Takze odpoved na Vasi otazku je "TCPDUMP je pred firewallom"
Jo a taky jeste rikaji:
tcpdump is an excellent tool, but ( excuse me if I'm stating the obvious
), don't underestimate the usefulness of the logging rules in IPTables
combined with
tail -f /var/log/$logfile | grep $string_you_are_looking_for
Cesky receno: pokud mate iptables (netfilter) tak na vetsinu veci tcpdump ani nepotrebujete