From notes by ?? at CPOSC '09 conference

====== tcpdump =====
<code bash>tcpdump -i -c 25</code>
  * -i interface
  * -c 25 get 25 packets

<code bash>tcpdump host adam and not src eve</code>
  * host name is adam; sender or receiver has name adam
  * source of the packet is eve; specifying sender should be eve

<code bash>tcpdump -n host adam or eve and port 80 and vlan 1</code>
  * dont know name; shows u IP addresses

<code bash>tcpdump -F filename host adam</code>
  * open existing file that was exported to and then filter those results

use screen to see tcpdump stuff going in on one screen, and out on another screen

====== iproute2 ======
replaces ifconfig, route, iptunnel

<code bash>sudo apt-get install iproute</code>
  * not installed by default

Managing routes
<code bash>ip addr add 10.10.20.254/24 dev eth0</code>
  * ??

<code bash>ip addr add 10.20.0.254/24 label eth0:1 dev eth0</code>
  * virtual NIC; allows multiple IP addresses on single network card; network card on top network card

<code bash>ip addr del</code>

<code bash>ip route show</code>
<code bash>ip route sh table main</code>