and a helper script tcpdump_postproc.sh for some postprocessing:
#!/bin/bash tcpdump -iany -G $((30*60)) -n -w tcpdump.io.%F_%H%M%S.pcap -z ./tcpdump_postproc.sh net 192.168.1.0/24 or net 192.168.2.0/24 > tcpdump.statistics ./tcpdump_postproc.sh
#!/bin/bash gzip *.pcap find . -maxdepth 0 -mmin +$((12*60)) -name '*.pcap.gz' -delete
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.