netwatch(1M) SYSTEM ADMINISTRATION COMMANDS netwatch(1M)
NAME
netwatch - Watch network traffic
SYNOPSIS
/usr/sony/bin/netwatch [-sName] [-dName] [-aitu] [ device-
number ]
DESCRIPTION
netwatch can display all packets being sent or received on a
network interface. When possible, protocol headers are
decoded and printed in an easy to read format. The program
has no effect on normal system operation, and is provided
for debugging and network trouble shooting.
The device-number optional allows the user to specify the
network interface by unit number. The default is the built
in ethernet interface. Valid values start at 0.
This program is derived from the Berkeley tcpdump source
code. All of the protocol decoding was ported, and some of
the ethertalk portions have been enhanced. The program is
built on top of the Stanford packet filter that comes with
the NEWS ethernet driver.
It has options that allow specific protocols to be filtered
out. The source and destination addresses can also have
individual filters assigned. These options are:
-dName
This option tells the system to only accept packets
with the destination address of host Name. The host
name given must be listed in /etc/ethers.
-sName
This option tells the system to only accept packets
with the source address of host Name. The host name
given must be listed in /etc/ethers.
-a This option tells the system to discard all ARP packet
types.
-i This option tells the system to discard all INET
packet types.
-t This option tells the system to discard all TCP/IP
packets.
-u This option tells the system to discard all UDP/IP
packets.
FILES
/etc/ethers /usr/include/io/sonyen.h
1
netwatch(1M) SYSTEM ADMINISTRATION COMMANDS netwatch(1M)
SEE ALSO
arp(7), inet(7), ip(7), tcp(7), udp(7), en(7).
2