Display All hostnames Which Matched A Pf Rule


/ Published in: Bash
Save to your folder(s)



Copy this code and paste it in your HTML
  1. for i in $(tcpdump -n -e -ttt -r /var/log/pflog |grep match | awk '{print $10}' | grep -v '\:\:' | cut -f '1 2 3 4' -d . | sort -u); do host $i | awk '{print $5}' | grep -Ev 'NXDOMAIN|SERVFAIL|^no$|^for$' | sed 's/\.$//g'; done

Report this snippet


Comments

RSS Icon Subscribe to comments

You need to login to post a comment.