{"image_url":null,"provider_url":"https://hatena.blog","blog_title":"\u30a8\u30f3\u30b8\u30cb\u30a2\u3067\u3059\u3088\uff01","height":"190","url":"https://totem3.hatenablog.jp/entry/2019/05/04/010653","description":"(udp \u3060\u3051\u3069)tcpdump \u3059\u308c\u3070\u5f53\u7136\u5b9b\u5148\u306e ip address \u3084 port \u304c\u898b\u3048\u308b\u304c\u3001systemtap \u3067 daddr, dport \u3092 printf \u3057\u3066\u307f\u308b\u3068 daddr \u304c 0.0.0.0, dport \u304c 0 \u306b\u898b\u3048\u308b\u3053\u3068\u304c\u3042\u308b\u3002 \u540d\u524d\u89e3\u6c7a\u306e\u30c8\u30ec\u30fc\u30b9\u3092\u3057\u3066\u3044\u3066\u3001\u901a\u5e38\u540d\u524d\u89e3\u6c7a\u3092\u3057\u3066\u3044\u308b\u3068\u304d\u306f\u5b9b\u5148\u30dd\u30fc\u30c8\u304c 53 \u306b\u306a\u306e\u3067\u3001 probe udp.sendmsg \u3067 if (dport == 53) \u3068\u3057\u3066\u304a\u3051\u3070\u540d\u524d\u89e3\u6c7a\u306b\u95a2\u4fc2\u3059\u308b udp \u306e\u9001\u4fe1\u3060\u3051\u30c8\u30ec\u30fc\u30b9\u3067\u304d\u308b\u306e\u3060\u3051\u3069\u3001\u305f\u3068\u3048\u3070 dig \u3067\u540d\u524d\u3092\u5f15\u3044\u305f\u3068\u304d\u306b\u306f\u3053\u308c\u3060\u3068\u5f15\u3063\u304b\u304b\u3089\u306a\u304b\u3063\u305f\u3053\u3068\u3067\u6c17\u4ed8\u3044\u305f\u3002 \u5b9f\u969b\u306b\u30c8\u30ec\u30fc\u30b9\u3057\u305f\u3044\u30d7\u2026","html":"","author_url":"https://blog.hatena.ne.jp/totem_3/","published":"2019-05-04 01:06:53","blog_url":"https://totem3.hatenablog.jp/","categories":["linux","systemtap"],"width":"100%","author_name":"totem_3","title":" systemtap \u3067 udp \u306e daddr, dport \u304c 0.0.0.0 \u3084 0 \u306b\u898b\u3048\u308b\u3053\u3068\u304c\u3042\u308b\u306e\u306f\u306a\u3093\u3067\u306a\u306e\u304b","provider_name":"Hatena Blog","version":"1.0","type":"rich"}