WHAT TO EXPECT
Users can use a cloudSwXtch specific version of tcpdump called swxtch-tcpcump. This tool helps with capturing multicast packets sent to and from the cloudSwXtch. It is the same as tcpdump but with logic to decode our own header and display the original MC payload.
In this article, users will learn about the available arguments for swxtch-tcpdump.
In this article, users will learn about the available arguments for swxtch-tcpdump.
Using swxtch-tcpdump
Execute the following command:
swxtch-tcpdumpNote: The default is swxtch-tun (Windows) or swxtch-tun0 (Linux). If their multicast is running on a different interface, then a user will need to specify that interface. To get a list of interfaces for Windows, you can use ip config. For Linux, you can use ip a. After you get the name of the correct interface, you can use the -i argument followed by your desired interface name.
Example:
swxtch-tcpdump -i ens6
Additional arguments
Users can use the -h argument as shown below to get a list of available arguments for swXtch-tcpdump.
ubuntu@ip-172-41-128-232:/var/opt$ swxtch-tcpdump -h
swxtch-tcpdump version 5.0.0-PRE-GIT
libpcap version 1.9.1 (with TPACKET_V3)
OpenSSL 1.1.1f 31 Mar 2020
Usage: swxtch-tcpdump [-AbdDefhHIJKlLnNOpqStuUvxX#] [ -B size ] [ -c count ] [--count]
[ -C file_size ] [ -E algo:secret ] [ -F file ] [ -G seconds ]
[ -i interface ] [ --immediate-mode ] [ -j tstamptype ]
[ -M secret ] [ --number ] [ --print ]
[ --print-sampling nth ] [ -Q in|out|inout ] [ -r file ]
[ -s snaplen ] [ -T type ] [ --version ]
[ -V file ] [ -w file ] [ -W filecount ] [ -y datalinktype ]
[ --time-stamp-precision precision ] [ --micro ] [ --nano ]
[ -z postrotate-command ] [ -Z user ] [ expression ]