CAPTURE PACKETS ON ETH0 IN ASCII AND HEX AND WRITE TO FILE

> tcpdump -i ethO -XX -w out.pcap

CAPTURE HTTP TRAFFIC TO 2 .2 .2 .2

> tcpdump -i ethO port  80 dst 2.2.2.2

SHOW CONNECTIONS TO A SPECIFIC IP

> tcpdump -i ethO -tttt dst 192.168.1.22 and not net 192.168.1.0/24

PRINT ALL PING RESPONSES

> tcpdump -i ethO 'icmp[icmptype] == icmp-echoreply'

CAPTURE 50 DNS PACKETS AND PRINT TIMESTAMP

> tcpdump -i ethO -c 50 -tttt 'udp and port 53'