Wiki

User Tools

Site Tools

Trace: what_package_owns_a_file microsoft_teams triple_space_a_file local_vs_global_aliases create_an_extension guid_partition_table_gpt install_microsoft_fonts dns_performance_tests check_status_of_a_zfs_pool dump_ssl_data_in_realtime
ubuntu:ssl:dump_ssl_data_in_realtime

This is an old revision of the document!

Ubuntu - SSL - Dump SSL data in realtime

ssldump -a -A -H -i en0

returns: 

New TCP connection #1: sharewiz.net(32866) <-> 192.168.1.2(8389)
1 1  0.0043 (0.0043)  C>S SSLv2 compatible client hello
1 2  0.0057 (0.0014)  S>C  Handshake  
      ServerHello
1 3  0.0057 (0.0000)  S>C  Handshake
      Certificate
1 4  0.0057 (0.0000)  S>C  Handshake
      ServerHelloDone
1 5  0.0182 (0.0125)  C>S  Handshake
      ClientKeyExchange
1 6  0.0182 (0.0000)  C>S  ChangeCipherSpec
1 7  0.0182 (0.0000)  C>S  Handshake
1 8  0.0367 (0.0184)  S>C  ChangeCipherSpec
1 9  0.0367 (0.0000)  S>C  Handshake
1 10 3.2154 (3.1786)  C>S  application_data
1 11 3.2154 (0.0000)  C>S  application_data
1 12 3.4370 (0.2216)  C>S  application_data
1 13 3.4370 (0.0000)  C>S  application_data
1 14 3.4681 (0.0311)  S>C  application_data
1 15 3.4681 (0.0000)  S>C  application_data
2    3.4307 (3.4307)  S>C  TCP FIN
1 16 3.5172 (0.0491)  S>C  Alert
1 17 3.5178 (0.0006)  C>S  Alert
1    3.5180 (0.0001)  C>S  TCP FIN
2    3.4815 (0.0508)  C>S  TCP FIN
1    3.5194 (0.0013)  S>C  TCP FIN

NOTE:

  • -A and -H options tell ssldump to print all of the SSL record layer headers.
  • -a: Include TCP connection states, such as SYN, SYN/ACK, ACK, FIN, etc.
  • C>S: Communications originating from the client.
  • S>C: Messages originating from the server
ubuntu/ssl/dump_ssl_data_in_realtime.1612267963.txt.gz · Last modified: 2021/02/02 12:12 by peter
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki