./tcpdump -i wlan0 -p -vv -s 0
./tcpdump -i any -p -vv -s 0
1|msm8953_64:/data/local/test # ./tcpdump -i rmnet_data0 -p -vv -s 0
tcpdump: listening on rmnet_data0, link-type LINUX_SLL (Linux cooked), capture size 65535 bytes
tcpdump: pcap_loop: cooked-mode frame doesn't have room for sll header
0 packets captured
1 packets received by filter
0 packets dropped by kernel
1|msm8953_64:/data/local/test #
C:\Users\admin>
C:\Users\admin>adb shell
msm8953_64:/ # ps | grep ailiving
system 2920 600 2286480 304344 SyS_epoll_ 00ea49a458 S com.ailiving.car.device
system 3298 600 1012328 40880 SyS_epoll_ 00ea49a458 S com.ailiving.car.logcatservice
msm8953_64:/ # am force-stop com.ailiving.car.device
msm8953_64: / #
msm8953_64: / #
./tcpdump -i any -p -vv -s 0
tcpdump -i any -p -vv -s 0 -w capture.pcap
tcpdump -i any -p -vv -s 0
msm8953_64:/storage/emulated/0/test # tcpdump -D
1.dummy0
2.rmnet_ipa0
3.rmnet_data0
4.rmnet_data7
5.lo
msm8953_64:/storage/emulated/0/test #
// No Internet of Things card is connected//
msm8953_64:/storage/emulated/0/test #
C:\Users\admin>adb shell
msm8953_64:/ # ifconfig
rmnet_ipa0 Link encap:UNSPEC
UP RUNNING MTU:2000 Metric:1
RX packets:6 errors:0 dropped:0 overruns:0 frame:0
TX packets:12 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:716 TX bytes:897
rmnet_data7 Link encap:UNSPEC
inet6 addr: fe80::ce81:dbd2:ce59:625c/64 Scope: Link
UP RUNNING MTU:2000 Metric:1
RX packets:8 errors:0 dropped:0 overruns:0 frame:0
TX packets:12 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:620 TX bytes:897
dummy0 Link encap:Ethernet HWaddr 0e:37:d1:16:d1:ca
inet6 addr: fe80::c37:d1ff:fe16:d1ca/64 Scope: Link
UP BROADCAST RUNNING NOARP MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:3 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 TX bytes:210
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope: Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:2 errors:0 dropped:0 overruns:0 frame:0
TX packets:2 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:240 TX bytes:240
msm8953_64:/ #
// The IoT card is not connected //
Connect the IoT card
msm8953_64:/ # ifconfig
rmnet_ipa0 Link encap:UNSPEC
UP RUNNING MTU:2000 Metric:1
RX packets:50 errors:0 dropped:0 overruns:0 frame:0
TX packets:96 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:43606 TX bytes:7994
rmnet_data7 Link encap:UNSPEC
inet6 addr: fe80::c6fa:848f:427c:aa83/64 Scope: Link
UP RUNNING MTU:2000 Metric:1
RX packets:8 errors:0 dropped:0 overruns:0 frame:0
TX packets:12 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:620 TX bytes:897
dummy0 Link encap:Ethernet HWaddr 56:61:01:31:97:46
inet6 addr: fe80::5461:1ff:fe31:9746/64 Scope: Link
UP BROADCAST RUNNING NOARP MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:3 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:0 TX bytes:210
rmnet_data0 Link encap:UNSPEC
inet addr:10.82.161.167 Mask:255.255.255.240
inet6 addr: fe80::e61b:3af0:d45f:1b67/64 Scope: Link
UP RUNNING MTU:1500 Metric:1
RX packets:56 errors:0 dropped:0 overruns:0 frame:0
TX packets:84 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:42218 TX bytes:7097
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope: Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:2 errors:0 dropped:0 overruns:0 frame:0
TX packets:2 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:240 TX bytes:240
tcpdump -i any -p -s 0 -w ./capture.pcap
Connect the IoT card
wlan0
这样命令使用是正确
wlan0 Link encap:Ethernet HWaddr 90:bd:e6:b1:81:7a
inet addr:192.168.1.133 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::92bd:e6ff:feb1:817a/64 Scope: Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:532440 errors:0 dropped:0 overruns:0 frame:0
TX packets:319313 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:758936950 TX bytes:21285661
tcpdump -i wlan0 -p -vv -s 0 -w capture.pcap
tcpdump: listening on wlan0, link-type EN10MB (Ethernet), capture size 65535 bytes
Got 6768
tcpdump -i wlan0 -p -vv -s 0 -w capture.pcap
This command is correct
For example, we only want to extract the first field (time field) of each line of the packet. In this case, we need -l to change the default full buffering to line buffering.
tcpdump -i eth0 port 1111 -l | awk'{print $1}'
/ Commands that the IoT card can use /
msm8953_64:/storage/emulated/0/test # tcpdump -i rmnet_data0 -p -vv -s 0 -w capture.pcap
tcpdump: listening on rmnet_data0, link-type LINUX_SLL (Linux cooked), capture size 65535 bytes
Got 0
tcpdump: pcap_loop: cooked-mode frame doesn't have room for sll header
2 packets captured
3 packets received by filter
0 packets dropped by kernel
1|msm8953_64:/storage/emulated/0/test #
1|msm8953_64:/storage/emulated/0/test #
/ Commands that the IoT card can use /
It is determined that the version of tcpdump has a great impact
msm8953_64:/data/local/test # ./tcpdump --version
tcpdump version 4.0.0
libpcap version 1.0.0
Usage: tcpdump [-aAdDefIKlLnNOpqRStuUvxX] [ -B size ] [ -c count ]
[ -C file_size ] [ -E algo:secret ] [ -F file ] [ -G seconds ]
[ -i interface ] [ -M secret ] [ -r file ]
[ -s snaplen ] [ -T type ] [ -w file ] [ -W filecount ]
[ -y datalinktype ] [ -z command ] [ -Z user ]
[ expression ]
1|msm8953_64:/data/local/test #
Please use this version https://www.androidtcpdump.com/android-tcpdump/downloads
msm8953_64:/data/local/test # ./tcpdump --version
tcpdump version 4.99.0
libpcap version 1.10.0 (with TPACKET_V3)
msm8953_64:/data/local/test #
You can also find me for qq: 1034828302