So hab jetzt ssh -vvv und tcpdump ausgeführt. SSH auf dem einen Laptop mit der Adresse 10.10.10.1 und gleichzeitig tcpdump auf dem anderen mit der Adresse 10.10.10.2. tcpdump habe ich abgebrochen nachdem ssh mit dem connection timed out error beendet wurde
Code:
bw@bwhplap:~$ sudo tcpdump -vv
tcpdump: listening on firewire0, link-type LINUX_SLL (Linux cooked), capture size 262144 bytes
22:33:12.196991 IP (tos 0x0, ttl 64, id 36346, offset 0, flags [DF], proto TCP (6), length 60)
10.10.10.1.59596 > bwhplap.ssh: Flags [S], cksum 0xacee (correct), seq 3703332496, win 64240, options [mss 1460,sackOK,TS val 3962464171 ecr 0,nop,wscale 7], length 0
22:33:13.228605 IP (tos 0x0, ttl 64, id 36347, offset 0, flags [DF], proto TCP (6), length 60)
10.10.10.1.59596 > bwhplap.ssh: Flags [S], cksum 0xa8e6 (correct), seq 3703332496, win 64240, options [mss 1460,sackOK,TS val 3962465203 ecr 0,nop,wscale 7], length 0
22:33:15.244669 IP (tos 0x0, ttl 64, id 36348, offset 0, flags [DF], proto TCP (6), length 60)
10.10.10.1.59596 > bwhplap.ssh: Flags [S], cksum 0xa106 (correct), seq 3703332496, win 64240, options [mss 1460,sackOK,TS val 3962467219 ecr 0,nop,wscale 7], length 0
22:33:17.292761 [|ARP]
0x0000: 0018 0800 1004 0001 484f c000 2c18 6c70 ........HO..,.lp
0x0010: 0a02 0001 0000 0000 0a0a 0a01 0a0a 0a02 ................
22:33:17.292838 [|ARP]
0x0000: 0018 0800 1004 0002 5566 7799 1122 3355 ........Ufw.."3U
0x0010: 0a02 0001 0000 0000 0a0a 0a02 0a0a 0a01 ................
22:33:19.340841 IP (tos 0x0, ttl 64, id 36349, offset 0, flags [DF], proto TCP (6), length 60)
10.10.10.1.59596 > bwhplap.ssh: Flags [S], cksum 0x9106 (correct), seq 3703332496, win 64240, options [mss 1460,sackOK,TS val 3962471315 ecr 0,nop,wscale 7], length 0
22:33:27.533037 IP (tos 0x0, ttl 64, id 36350, offset 0, flags [DF], proto TCP (6), length 60)
10.10.10.1.59596 > bwhplap.ssh: Flags [S], cksum 0x7106 (correct), seq 3703332496, win 64240, options [mss 1460,sackOK,TS val 3962479507 ecr 0,nop,wscale 7], length 0
22:33:43.660956 IP (tos 0x0, ttl 64, id 36351, offset 0, flags [DF], proto TCP (6), length 60)
10.10.10.1.59596 > bwhplap.ssh: Flags [S], cksum 0x3206 (correct), seq 3703332496, win 64240, options [mss 1460,sackOK,TS val 3962495635 ecr 0,nop,wscale 7], length 0
22:34:16.684688 IP (tos 0x0, ttl 64, id 36352, offset 0, flags [DF], proto TCP (6), length 60)
10.10.10.1.59596 > bwhplap.ssh: Flags [S], cksum 0xb105 (correct), seq 3703332496, win 64240, options [mss 1460,sackOK,TS val 3962528659 ecr 0,nop,wscale 7], length 0
22:34:21.804493 [|ARP]
0x0000: 0018 0800 1004 0001 484f c000 2c18 6c70 ........HO..,.lp
0x0010: 0a02 0001 0000 0000 0a0a 0a01 0a0a 0a02 ................
22:34:21.804546 [|ARP]
0x0000: 0018 0800 1004 0002 5566 7799 1122 3355 ........Ufw.."3U
0x0010: 0a02 0001 0000 0000 0a0a 0a02 0a0a 0a01 ................
22:34:28.815691 IP (tos 0x0, ttl 255, id 39587, offset 0, flags [DF], proto UDP (17), length 73)
10.10.10.1.mdns > 224.0.0.251.mdns: [udp sum ok] 0 [2q] PTR (QM)? _ipps._tcp.local. PTR (QM)? _ipp._tcp.local. (45)
22:34:30.587409 IP6 (flowlabel 0xd625c, hlim 255, next-header UDP (17) payload length: 53) fe80::4a4f:c000:2c18:6c70.mdns > ff02::fb.mdns: [udp sum ok] 0 [2q] PTR (QM)? _ipps._tcp.local. PTR (QM)? _ipp._tcp.local. (45)
22:35:01.743663 IP6 (hlim 255, next-header ICMPv6 (58) payload length: 32) fe80::4a4f:c000:2c18:6c70 > ip6-allrouters: [icmp6 sum ok] ICMP6, router solicitation, length 32
source link-address option (1), length 24 (3): 48:4f:c0:00:2c:18:6c:70:0a:02:00:01:00:00:00:00:00:00:00:00:00:00
0x0000: 484f c000 2c18 6c70 0a02 0001 0000 0000
0x0010: 0000 0000 0000
22:36:56.930457 IP (tos 0x0, ttl 64, id 26131, offset 0, flags [DF], proto UDP (17), length 247)
bwhplap.netbios-dgm > 10.10.10.255.netbios-dgm: [udp sum ok] UDP, length 219
22:36:56.930533 IP (tos 0x0, ttl 64, id 26132, offset 0, flags [DF], proto UDP (17), length 236)
bwhplap.netbios-dgm > 10.10.10.255.netbios-dgm: [udp sum ok] UDP, length 208
22:39:10.161586 IP6 (flowlabel 0x94c28, hlim 255, next-header UDP (17) payload length: 53) bwhplap.mdns > ff02::fb.mdns: [udp sum ok] 0 [2q] PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. (45)
22:39:10.161745 IP (tos 0x0, ttl 255, id 58946, offset 0, flags [DF], proto UDP (17), length 73)
bwhplap.mdns > 224.0.0.251.mdns: [udp sum ok] 0 [2q] PTR (QM)? _ipp._tcp.local. PTR (QM)? _ipps._tcp.local. (45)
22:40:41.567382 IP6 (flowlabel 0xbd0ae, hlim 255, next-header ICMPv6 (58) payload length: 16) bwhplap > ip6-allrouters: [icmp6 sum ok] ICMP6, router solicitation, length 16
source link-address option (1), length 8 (1): 55:66:77:99:11:22
0x0000: 5566 7799 1122
22:42:56.056297 IP (tos 0x0, ttl 64, id 34765, offset 0, flags [DF], proto UDP (17), length 247)
bwhplap.netbios-dgm > 10.10.10.255.netbios-dgm: [udp sum ok] UDP, length 219
22:42:56.056408 IP (tos 0x0, ttl 64, id 34766, offset 0, flags [DF], proto UDP (17), length 236)
bwhplap.netbios-dgm > 10.10.10.255.netbios-dgm: [udp sum ok] UDP, length 208
22:43:00.834069 IP (tos 0x0, ttl 255, id 59196, offset 0, flags [DF], proto UDP (17), length 73)
10.10.10.1.mdns > 224.0.0.251.mdns: [udp sum ok] 0 [2q] PTR (QM)? _ipps._tcp.local. PTR (QM)? _ipp._tcp.local. (45)
22:43:02.591771 IP6 (flowlabel 0xd625c, hlim 255, next-header UDP (17) payload length: 53) fe80::4a4f:c000:2c18:6c70.mdns > ff02::fb.mdns: [udp sum ok] 0 [2q] PTR (QM)? _ipps._tcp.local. PTR (QM)? _ipp._tcp.local. (45)
22:44:35.180554 IP6 (hlim 255, next-header ICMPv6 (58) payload length: 32) fe80::4a4f:c000:2c18:6c70 > ip6-allrouters: [icmp6 sum ok] ICMP6, router solicitation, length 32
source link-address option (1), length 24 (3): 48:4f:c0:00:2c:18:6c:70:0a:02:00:01:00:00:00:00:00:00:00:00:00:00
0x0000: 484f c000 2c18 6c70 0a02 0001 0000 0000
0x0010: 0000 0000 0000