From be69ad8b7ace7413dcd8a70524eb3d441cf4bbe0 Mon Sep 17 00:00:00 2001
From: David Westgate <davidjwestgate@gmail.com>
Date: Sat, 11 May 2024 10:48:10 -0700
Subject: [PATCH] rename hw2

---
 hw2/hw2.md | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)
 create mode 100644 hw2/hw2.md

diff --git a/hw2/hw2.md b/hw2/hw2.md
new file mode 100644
index 0000000..c1251c2
--- /dev/null
+++ b/hw2/hw2.md
@@ -0,0 +1,29 @@
+# Homework 2 - tcpdump
+
+For each TCP dump below, I will show the command used, and the output of 10 packets
+
+## tcpdump to capture only DNS packets
+
+### Command
+```bash
+sudo tcpdump -c 10 -tt -XX -v -i any 'tcp port 53 or udp port 53'
+```
+### Result
+[t1.md](t1.md)
+## tcpdump to capture TCP packets destined for either port 443 or 8080, originating from my computer
+
+### Command
+```bash
+sudo tcpdump -c 10 -tt -XX -v -i any 'tcp and src host 10.0.2.15 and (dst port 443 or dst port 8080)'
+```
+### Result
+[t2.md](t2.md)
+
+## tcpdump capture where traffic is either UDP or TCP, inbound to my computer, and destined to a port in range 20000 to 35000
+
+### Command
+```bash
+sudo tcpdump -c 10 -tt -XX -v -i any 'dst host 10.0.2.15 and (tcp or udp) and dst portrange 20000-35000'
+```
+### Result
+[t3.md](t3.md)
\ No newline at end of file