Skip site navigation (1)Skip section navigation (2)

FreeBSD Manual Pages

  
 
  

home | help
raddump(1)		    General Commands Manual		    raddump(1)

NAME
       raddump - decipher captured RADIUS packets

SYNOPSIS
       raddump [-?vsn] < pktfile

DESCRIPTION
       raddump(1)  interprets  captured	 RADIUS	packets	to print details about
       them, including a timestamp, packet lengths, RADIUS packet type,	source
       and  destination	hosts and ports, and included attribute	names and val-
       ues. It is primarily useful in conjunction with packet capture programs
       such as tcpdump(1) or snoop(1M),	and can	be used	either on a saved file
       or in a pipeline	to monitor ongoing communications.

       raddump(1) currently understands	packet traces that are	RFC  1761-com-
       pliant  (e.g.  those  produced  by  snoop v2) as	well as	those that are
       stored in the libpcap format (e.g. those	 produced  by  tcpdump).  rad-
       dump(1)	is able	to distinguish these file formats on the fly, so it is
       not necessary to	indicate which type of trace you are feeding it.

OPTIONS
       -?     print a usage summary

       -v     increase verbosity of output.  Multiple  -v  arguments  increase
	      verbosity. Without any -v's, raddump(1) will print simply	a one-
	      line summary per packet consisting of timestamp, source and des-
	      tination	host  and  port, RADIUS	packet type, and RADIUS	packet
	      size.

	      With one -v argument, raddump(1) will also print any  attributes
	      contained	in the packet, including the attribute name and	value.
	      For attributes containing	binary data, the actual	 contents  are
	      not  printed,  just  a summary indicating	the size of the	binary
	      data.

	      With two -v arguments, raddump(1)	will additionally print	a  hex
	      dump of any attributes containing	binary data.

       -n     By  default,  raddump(1) does a reverse DNS lookup on the	source
	      and destination IP addresses and	prints	the  associated	 host-
	      names.  The -n switch suppresses this lookup, so that raddump(1)
	      will simply print	the IP addresses in dotted quad	notation.

       -s     Print short hostnames. If	hostnames are being printed, omit  the
	      domain part of the hostname.

EXAMPLES
       With a saved packet trace:
	      $	raddump	< pktfile

       For real-time monitoring	with snoop:
	      $	mkfifo ./snoopfifo
	      $	snoop -q -s 1500 -o ./snoopfifo	udp port 1812 &
	      $	raddump	< snoopfifo

       For real-time monitoring	with tcpdump:
	      $	tcpdump	-s 1500	-w - udp port 1812 | raddump

SEE ALSO
       tcpdump(1), snoop(1M), pcap(3), RFC 1761

AUTHORS
       The original author of raddump(1) was Jon Moore.

BUGS
       Please send bug reports,	enhancements, or questions to:
	      jonm@isc.upenn.edu

								    raddump(1)

NAME | SYNOPSIS | DESCRIPTION | OPTIONS | EXAMPLES | SEE ALSO | AUTHORS | BUGS

Want to link to this manual page? Use this URL:
<https://www.freebsd.org/cgi/man.cgi?query=raddump&sektion=1&manpath=FreeBSD+12.2-RELEASE+and+Ports>

home | help