Tie Loose Ends
[root@dale.ro:~] # tcpdump -tan -i eth0 -s0 \(src host 18.97.14.81 and tcp dst port 80\) or \(dst host 18.97.14.81 and tcp src port 80\)
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
IP 18.97.14.81.32990 > 81.196.22.172.80: P 3927715552:3927716004(452) ack 3153214834 win 8688 <nop,nop,timestamp 7454339 623900166>
IP 81.196.22.172.80 > 18.97.14.81.32990: . 1:1449(1448) ack 452 win 8576 <nop,nop,timestamp 623906539 7454339>
IP 81.196.22.172.80 > 18.97.14.81.32990: P 1449:2795(1346) ack 452 win 8576 <nop,nop,timestamp 623906539 7454339>
IP 18.97.14.81.32990 > 81.196.22.172.80: . ack 1449 win 10136 <nop,nop,timestamp 7454351 623906539>
IP 18.97.14.81.32990 > 81.196.22.172.80: . ack 2795 win 11584 <nop,nop,timestamp 7454352 623906539>
IP 18.97.14.81.32991 > 81.196.22.172.80: P 3915896644:3915897210(566) ack 3153206928 win 3216 <nop,nop,timestamp 7454353 623900178>
IP 81.196.22.172.80 > 18.97.14.81.32991: P 1:200(199) ack 566 win 9056 <nop,nop,timestamp 623906550 7454353>
IP 18.97.14.81.32991 > 81.196.22.172.80: . ack 200 win 3216 <nop,nop,timestamp 7454358 623906550>
8 packets captured
28 packets received by filter
0 packets dropped by kernel
[root@dale.ro:~] # _