tcpdump的输出

空心菜

[root@www root]# tcpdump
tcpdump: listening on eth0
08:00:49.671087 PPPoE  [ses 0x5ce3] 218.92.40.222.1216 > dns.lyg.js.cn.domain:  1+ A? www.mirhoo
k.com. (33)
08:00:49.685663 PPPoE  [ses 0x5ce3] dns.lyg.js.cn.domain > 218.92.40.222.1216:  1 1/2/2 A[|domai
n] (DF)
08:00:49.687177 PPPoE  [ses 0x5ce3] 218.92.40.222.1217 > 218.92.8.27.15800: S 224497183:22449718
3(0) win 7168 <mss 1412,nop,wscale 0,nop,nop,timestamp 0 0,nop,nop,sackOK> (DF)
08:00:49.694982 PPPoE  [ses 0x5ce3] 218.92.40.222.32799 > dns.lyg.js.cn.domain:  9803+ PTR? 141.
12.102.202.in-addr.arpa. (45) (DF)
08:00:49.708826 PPPoE  [ses 0x5ce3] dns.lyg.js.cn.domain > 218.92.40.222.32799:  9803 1/2/2 (155
) (DF)
08:00:49.713158 PPPoE  [ses 0x5ce3] 218.92.40.222.32799 > dns.lyg.js.cn.domain:  9804+ PTR? 222.
40.92.218.in-addr.arpa. (44) (DF)
08:00:49.735434 PPPoE  [ses 0x5ce3] dns.lyg.js.cn.domain > 218.92.40.222.32799:  9804 NXDomain*
0/1/0 (124) (DF)
08:00:49.740331 PPPoE  [ses 0x5ce3] 218.92.8.27.15800 > 218.92.40.222.1217: R 0:0(0) ack 2244971
84 win 0
08:00:49.743884 PPPoE  [ses 0x5ce3] 218.92.40.222.32799 > dns.lyg.js.cn.domain:  9805+ PTR? 27.8
.92.218.in-addr.arpa. (42) (DF)
08:00:49.758330 PPPoE  [ses 0x5ce3] dns.lyg.js.cn.domain > 218.92.40.222.32799:  9805 NXDomain 0
/1/0 (103) (DF)
08:00:50.242424 PPPoE  [ses 0x5ce3] 218.92.40.222.1217 > 218.92.8.27.15800: S 224497183:22449718
3(0) win 7168 <mss 1412,nop,wscale 0,nop,nop,timestamp 0 0,nop,nop,sackOK> (DF)
08:00:50.298150 PPPoE  [ses 0x5ce3] 218.92.8.27.15800 > 218.92.40.222.1217: R 0:0(0) ack 1 win 0
08:00:50.742390 PPPoE  [ses 0x5ce3] 218.92.40.222.1217 > 218.92.8.27.15800: S 224497183:22449718
3(0) win 7168 <mss 1412,nop,wscale 0,nop,nop,timestamp 0 0,nop,nop,sackOK> (DF)
08:00:50.776125 PPPoE  [ses 0x5ce3] 218.92.8.27.15800 > 218.92.40.222.1217: R 0:0(0) ack 1 win 0
08:00:51.188381 PPPoE  [ses 0x5ce3] 218.92.40.222.1219 > 218.92.8.27.http: S 224915061:224915061
(0) win 7168 <mss 1412,nop,wscale 0,nop,nop,timestamp 0 0,nop,nop,sackOK> (DF)

15 packets received by filter
0 packets dropped by kernel
谁能告诉我各个数据都属于那部分
怎么没有内网的ip啊

空心菜

http://www.linuxsir.cn/forum.php ... 6%CE%F6%CD%F8%C2%E7