On Tue, Feb 01, 2000 at 12:12:04AM -0600, Craig Rodrigues wrote:
>
>
> On Mon, Jan 31, 2000 at 08:16:43PM -0800, Guy Harris wrote:
> > and it captured both DNS requests and replies. Does "udp and port XXX"
> > work in Ethereal for other values of XXX, or is the problem limited to
> > port 162?
>
> The problem seems to be limited to port 162.
>
> If I take the tcpdump snapshot from the tcpdump.org website and
> run
> tcpdump port 162
>
> and then run snmptrap, I don't see anything.
>
> Am I going nuts? Any ideas how to debug this?
What does "tcpdump -d port 162" show? Mine shows:
$ sudo tcpdump -d port 162
(000) ldh [12]
(001) jeq #0x800 jt 2 jf 13
(002) ldb [23]
(003) jeq #0x6 jt 5 jf 4
(004) jeq #0x11 jt 5 jf 13
(005) ldh [20]
(006) jset #0x1fff jt 13 jf 7
(007) ldxb 4*([14]&0xf)
(008) ldh [x + 14]
(009) jeq #0xa2 jt 12 jf 10
(010) ldh [x + 16]
(011) jeq #0xa2 jt 12 jf 13
(012) ret #68
(013) ret #0
(I'm using ethernet)
--gilbert