Emmabuntus, Ubuntu, Derivate, Linux, Open Source BackTrack, Linux, distributions, Ubuntu, derivate, securuty, forensic VirtualBox, Linux, Ubuntu, Raring Ringtail synaptic, Ubuntu, Linux, software packages jwplayer, multimedia, Linux, Ubuntu, flash Meshlab, graphic, software, Ubuntu, open source, Linux Synapse, Linux, Ubuntu, raring, Quantal Gimp, Ubuntu, Linux FreeMind, Linux, open source Linux, infographic, history

Tcpdump is a very powerful command line interface packet sniffer.

tcpdumpTcpdump is a a powerful command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture.


In this page, you'll find the latest stable version of tcpdump and libpcap, as well as current development snapshots, a complete documentation, and information about how to report bugs or contribute patches.


Latest Release.

Version: 4.4.0 / 1.4.0
Release Date: May 20, 2013

Version: 4.3.0 / 1.3.0
Release Date: June 12, 2012

The current development version is freely accessible through the anonymous GIT server. To checkout a copy of libpcap or tcpdump, do:


git clone git://bpf.tcpdump.org/tcpdump

git clone git://bpf.tcpdump.org/libpcap


One can then configure and compile the source via the normal GNU autoconf method. You can also find a nightly update at git hub: libpcap and git hub: tcpdump and you are encouraged to do your initial clone from there:


git clone https://github.com/the-tcpdump-group/libpcap.git

git clone https://github.com/the-tcpdump-group/tcpdump.git


You are also encouraged to submit patches in the form of git trees hosted on github or elsewhere.



To download TCPdump:


#apt-get install tcpdump

To see the TCPdump dependencies:


#apt-cache depends tcpdump

   Depends: libc6
   Depends: libpcap0.8
   Depends: libssl0.9.8

To see the installed TCPdump version:


#apt-cache policy tcpdump


   Installed: 3.9.4-2ubuntu0.1
Candidate: 3.9.4-2ubuntu0.1
   Version table:
  *** 3.9.4-2ubuntu0.1 0
            500 http://security.ubuntu.com dapper-security/main Packages
            100 /var/lib/dpkg/status
         3.9.4-2 0
            500 http://ch.archive.ubuntu.com dapper/main Packages








Logical Operations

Other expression






tcp dst 3128



Values: ether, fddi, ip, arp, rarp, decnet, lat, sca, moprc, mopdl, tcp and udp.
If no protocol is specified, all the protocols are used.

Values: src, dst, src and dst, src or dst
If no source or destination is specified, the "src or dst" keywords are applied.
For example, "host" is equivalent to "src or dst host".

Values: net, port, host, portrange.
If no host(s) is specified, the "host" keyword is used.
For example, "src" is equivalent to "src host".

Logical Operations:
Values: not, and, or.
Negation ("not") has highest precedence. Alternation ("or") and concatenation ("and") have equal precedence and associate left to right.
For example,
"not tcp port 3128 and tcp port 23" is equivalent to "(not tcp port 3128) and tcp port 23".
"not tcp port 3128 and tcp port 23" is NOT equivalent to "not (tcp port 3128 and tcp port 23)".


If you liked this article, subscribe to the feed by clicking the image below to keep informed about new contents of the blog:


Do you consider this article interesting? Share it on your network of Twitter contacts, on your Facebook wall or simply press "+1" to suggest this result in searches in Google, Linkedin, Instagram or Pinterest. Spreading content that you find relevant helps this blog to grow. Thank you!
Share on Google Plus

About Hugo Repetto

Ubuntu is a Linux distribution that offers an operating system predominantly focused on desktop computers but also provides support for servers. Based on Debian GNU / Linux, Ubuntu focuses on ease of use, freedom in usage restriction, regular releases (every 6 months) and ease of installation.
    Blogger Comment
    Facebook Comment


Post a Comment