udp packets

UDP is a layer 4 protocol - i.e. Transport layer.

  • ssl Layers 7 (Application) Application Specific
  • Presentation 6 ASCII, EBCDIC, TIFF, GIF, PICT, JPEG, MPEG, MIDI
  • Session 5
    • IP , RPC, SQL
  • Transport (4)
    • UDP TCP

## Viewing UDP Packets with tcpdump

The initial command is

 tcpdump -i <Interface>  udp -vv  -X

Command switches are

  • -vv Verbose output
  • -X dump in Hex

Viewing all packets to a specific host

tcpdump -i en3  dst 224.1.1.1  -vv -X
  • dst The Despitation Port

Note: If you are using TCP you can use port also

tcpdump -i en3 dst 16.181.170.246 and port 22 -vv -X