I have to capture all the UDP packets sent from host A to any UDP port of host B. The following, if run on host B, doesn't work.
$ sudo tcpdump -i eth0 -SX udp src <hostA>
tcpdump: 'udp' modifier applied to host
What is the correct command line to achieve the same?
Best Answer
I would use
to up the length to "a lot", write the data to a file and use
hostrather thansrcto capture the data in both directions. Essentially you are missing the wordandbetweensrcandudp.