tcpdump notes

tcpdump notes

tcpdump -i eno1 -s 0 -G 60 -W 1 -w out.pcap udp and port 12345
        -i eno1                                                    --- interface
                -s 0                                               --- max packet length to capture
                     -G 60                                         --- capture packets for this long before rolling to new file
                           -W 1                                    --- number of files to capture
                                -w out.pcap                        --- output file name
                                            udp and port 12345     --- capture filter