3. ????????BPF??????????

         ????????????tcpdump?е??????????????????????????????????wireshark???

         ?????????BPF?????????????????????????????????????????????

          ?????????????

          host?? ?????????IP?????????????mac??????????00:00:00:00:00:00?????????????????????й?192.168.0.148???IP???????????????д??tcpdump host 192.168.0.148?? host????????192.168.0.148????????????????????????????192.168.0.148????????????

          net?? ????????????????????????????????????????????????????????1??2??3???ж?A??????B????????C??????????tcpdump net 10.1.1 ??????????????C??????

port?????????????tcpdump host and port 22?? ?????????22???????????????TCP????UDP????????????????????????????????and J?????????TCP??????????дtcpdump host 192.168.0.148 and tcp port 22??

portrange????????壬????????????Χ??????????”-”?????Χ??????tcpdump port 1025-8080

         ?????????????

???????????????“?????????????192.168.0.148??????????192.168.0.148????”??????????????????????????????????????src?? ????tcpdump src host 192.168.0.148?????????????????192.168.0.148?????????????????dst??????tcpdump dst host 192.168.0.148??

        ??????????Э??

???????????Э????N?????????????3??????????????????google???J

ether??fddi?? ?????Э??

tr?? TRЭ??

ip?? IPЭ??

ip6?? IPv6Э??

arp??  ARPЭ??

???????????????????????and?? or?? not?????????????????????????????? ????????????????????????????????????

 

??????????и????X?????????????TCP?е???????λ???????????????????????????????????