Skip to Content
Navigation:
Cover for Let's learn tcpdump!

Let's learn tcpdump!

Ever wanted to know how to use tcpdump, but were intimidated by all the command line options? I was too! But then I learned it, and it wasn’t as bad as I thought. In this zine we’ll explain:

  • what kinds of questions you can answer with tcpdump
  • how to interpret tcpdump output
  • which command line arguments are the really important ones
  • how to write a BPF filter to filter tcpdump output

Commonly asked questions:

what's a zine?

According to Wikipedia:

A fanzine (blend of fan and magazine or -zine) is a non-professional and non-official publication produced by enthusiasts of a particular cultural phenomenon (such as a literary or musical genre) for the pleasure of others who share their interest.

The zines on this site are usually about 20 pages, and they’re full of short, informative, and fun comics which will quickly teach you something useful.

who are these zines for?

They’re aimed at working programmers, like me! The idea is that you’re busy, you want to know how to use some computer thing, and the man page makes your head hurt.

how do I read them?

The easiest way to read any of these is on your computer.

But the best way to read them is to print it out, staple it, fold it, read it, and then give it to a friend. It turns out it’s way easier to convince your friends to read a physical thing that is in front of them.

They all have black & white version to make sure they print well if you only have a black & white printer.

is it a PDF?

yes! You can read it right away on your computer, and it comes with a printable PDF you can print yourself at home. Here are print directions!

© Julia Evans 2020 | All rights reserved (see licensing)