[ Previous |
Next |
Contents |
Glossary |
Home |
Search ]
AIX Version 4.3 Commands Reference, Volume 3
iptrace Daemon
Purpose
Provides interface-level packet tracing for Internet protocols.
/usr/sbin/iptrace [ -a ] [ -e ] [ -P Protocol ] [ -i Interface ] [ -p Port ] [ -s Host [ -b ]] [ -d Host [ -b ]] LogFile
Description
The /usr/sbin/iptrace daemon records Internet packets received from configured interfaces. Command flags provide a filter so that the daemon traces only packets meeting specific criteria. Packets are traced only between the local host on which the iptrace daemon is invoked and the remote host. The LogFile parameter specifies the name of a file to which the results of the iptrace command are sent. To format this file, run the ipreport command.
Note: The file specified by the LogFile parameter should not reside on an NFS-mounted file system. Specifying an output file on an NFS-mounted file system can cause the iptrace daemon to hang. You may be unable to kill the iptrace daemon if it hangs, requiring that you restart the system.
Flags
| -a |
Suppresses ARP packets. |
| -b |
Changes the -d or -s flags to bidirectional mode. |
| -d Host |
Records packets headed for the destination host specified by the Host variable. The Host variable can be a host name or an Internet address in dotted-decimal format.
If used with the -b flag, the -d flag records packets both going to and coming from the host specified by the Host variable. |
| -e |
Enables promiscous mode on network adapters that support this function. |
| -i Interface |
Records packets received on the interface specified by the Interface variable. |
| -P Protocol |
Records packets that use the protocol specified by the Protocol variable. The Protocol variable can be a decimal number or name from the /etc/protocols file. |
| -p Port |
Records packets that use the port number specified by the Port variable. The Port variable can be a decimal number or name from the /etc/services file. |
| -s Host |
Records packets coming from the source host specified by the Host variable. The Host variable can be a host name or an Internet address in dotted-decimal format.
If used with the -b flag, the -s flag records packets both going to and coming from the host specified by the Host variable. |
Examples
- To record packets coming in and going out to any host on every interface, enter the command in the following format:
iptrace /tmp/nettrace
The recorded packets are received on and sent from the local host. All packet flow between the local host and all other hosts on any interface is recorded. The trace information is placed into the /tmp/nettrace
file.
- To record packets received on an interface from a specific remote host, enter the command in the following format:
iptrace -i en0 -p telnet -s airmail /tmp/telnet.trace
The packets to be recorded are received on the en0
interface, from remote host airmail
, over the telnet
port. The trace information is placed into the /tmp/telnet.trace
file.
- To record packets coming in and going out from a specific remote host, enter the command in the following format:
iptrace -i en0 -s airmail -b /tmp/telnet.trace
The packets to be recorded are received on the en0
interface, from remote host airmail
. The trace information is placed into the /tmp/telnet.trace
file.
Related Information
The ipreport command, the tcpdump command.
The /etc/protocols file format, /etc/services file format.
[ Previous |
Next |
Contents |
Glossary |
Home |
Search ]