On Tuesday 30 March 2004 3:17 pm, Peggy Kam wrote:
> Hi,
>
> Does tcpdump dumps traffic on a network in front or behind a firewall?
Not sure quite what you by "in front or behind", however I can tell you that
tcpdump works "closer to the wire" than netfilter, so it will see all traffic
hitting the interface, whether netfilter allows it or not.
> If it dumps traffic in front of a firewall, would anyone kindly suggest
> a way to test the firewall?
Um, test it by sending packets which should be allowed, and making sure they
are, then sending ones which should be blocked, and making sure they are?
Or have I misunderstood the question? How would you propose to use tcpdump
to test the firewall anyway?
Regards,
Antony.
--
You can spend the whole of your life trying to be popular,
but at the end of the day the size of the crowd at your funeral
will be largely dictated by the weather.
- Frank Skinner
Please reply to the list;
please don't CC me.
