Site Navigation

FreeBSD Manual Pages

   man apropos
 
   All Sections 1 - General Commands 2 - System Calls 3 - Subroutines 4 - Special Files 5 - File Formats 6 - Games 7 - Macros and Conventions 8 - Maintenance Commands 9 - Kernel Interface n - New Commands FreeBSD 16.0-CURRENT FreeBSD 15.1-RELEASE FreeBSD 15.1-RELEASE and Ports FreeBSD 15.1-RELEASE and Ports.quarterly FreeBSD 15.1-STABLE FreeBSD 15.0-RELEASE FreeBSD 15.0-RELEASE and Ports FreeBSD 14.4-RELEASE FreeBSD 14.4-RELEASE and Ports FreeBSD 14.4-STABLE FreeBSD 14.3-RELEASE FreeBSD 14.3-RELEASE and Ports FreeBSD 14.2-RELEASE FreeBSD 14.2-RELEASE and Ports FreeBSD 14.1-RELEASE FreeBSD 14.1-RELEASE and Ports FreeBSD 14.0-RELEASE FreeBSD 14.0-RELEASE and Ports FreeBSD 13.5-RELEASE FreeBSD 13.5-RELEASE and Ports FreeBSD 13.5-STABLE FreeBSD 13.4-RELEASE FreeBSD 13.4-RELEASE and Ports FreeBSD 13.3-RELEASE FreeBSD 13.3-RELEASE and Ports FreeBSD 13.2-RELEASE FreeBSD 13.2-RELEASE and Ports FreeBSD 13.1-RELEASE FreeBSD 13.1-RELEASE and Ports FreeBSD 13.0-RELEASE FreeBSD 13.0-RELEASE and Ports FreeBSD 12.4-RELEASE FreeBSD 12.4-RELEASE and Ports FreeBSD 12.3-RELEASE FreeBSD 12.3-RELEASE and Ports FreeBSD 12.2-RELEASE FreeBSD 12.2-RELEASE and Ports FreeBSD 12.1-RELEASE FreeBSD 12.1-RELEASE and Ports FreeBSD 12.0-RELEASE FreeBSD 12.0-RELEASE and Ports FreeBSD 11.4-RELEASE FreeBSD 11.4-RELEASE and Ports FreeBSD 11.3-RELEASE FreeBSD 11.3-RELEASE and Ports FreeBSD 11.2-RELEASE FreeBSD 11.2-RELEASE and Ports FreeBSD 11.1-RELEASE FreeBSD 11.1-RELEASE and Ports FreeBSD 11.0-RELEASE FreeBSD 11.0-RELEASE and Ports FreeBSD 10.4-RELEASE FreeBSD 10.4-RELEASE and Ports FreeBSD 10.3-RELEASE FreeBSD 10.3-RELEASE and Ports FreeBSD 10.2-RELEASE FreeBSD 10.2-RELEASE and Ports FreeBSD 10.1-RELEASE FreeBSD 10.1-RELEASE and Ports FreeBSD 10.0-RELEASE FreeBSD 10.0-RELEASE and Ports FreeBSD 9.3-RELEASE FreeBSD 9.3-RELEASE and Ports FreeBSD 9.2-RELEASE FreeBSD 9.2-RELEASE and Ports FreeBSD 9.1-RELEASE FreeBSD 9.1-RELEASE and Ports FreeBSD 9.0-RELEASE FreeBSD 9.0-RELEASE and Ports FreeBSD 8.4-RELEASE FreeBSD 8.4-RELEASE and Ports FreeBSD 8.3-RELEASE FreeBSD 8.3-RELEASE and Ports FreeBSD 8.2-RELEASE FreeBSD 8.2-RELEASE and Ports FreeBSD 8.1-RELEASE FreeBSD 8.1-RELEASE and Ports FreeBSD 8.0-RELEASE FreeBSD 8.0-RELEASE and Ports FreeBSD 7.4-RELEASE FreeBSD 7.4-RELEASE and Ports FreeBSD 7.3-RELEASE FreeBSD 7.3-RELEASE and Ports FreeBSD 7.2-RELEASE FreeBSD 7.2-RELEASE and Ports FreeBSD 7.1-RELEASE FreeBSD 7.1-RELEASE and Ports FreeBSD 7.0-RELEASE FreeBSD 6.4-RELEASE FreeBSD 6.4-RELEASE and Ports FreeBSD 6.3-RELEASE FreeBSD 6.3-RELEASE and Ports FreeBSD 6.2-RELEASE FreeBSD 6.1-RELEASE FreeBSD 6.0-RELEASE FreeBSD 6.0-RELEASE and Ports FreeBSD 5.5-RELEASE FreeBSD 5.5-RELEASE and Ports FreeBSD 5.4-RELEASE FreeBSD 5.4-RELEASE and Ports FreeBSD 5.3-RELEASE FreeBSD 5.3-RELEASE and Ports FreeBSD 5.2.1-RELEASE FreeBSD 5.2.1-RELEASE and Ports FreeBSD 5.2-RELEASE FreeBSD 5.2-RELEASE and Ports FreeBSD 5.1-RELEASE FreeBSD 5.0-RELEASE FreeBSD 4.11-RELEASE FreeBSD 4.11-RELEASE and Ports FreeBSD 4.10-RELEASE FreeBSD 4.10-RELEASE and Ports FreeBSD 4.9-RELEASE FreeBSD 4.9-RELEASE and Ports FreeBSD 4.8-RELEASE FreeBSD 4.8-RELEASE and Ports FreeBSD 4.7-RELEASE FreeBSD 4.6.2-RELEASE FreeBSD 4.6.2-RELEASE and Ports FreeBSD 4.6-RELEASE FreeBSD 4.6-RELEASE and Ports FreeBSD 4.5-RELEASE FreeBSD 4.5-RELEASE and Ports FreeBSD 4.4-RELEASE FreeBSD 4.3-RELEASE FreeBSD 4.3-RELEASE and Ports FreeBSD 4.2-RELEASE FreeBSD 4.2-RELEASE and Ports FreeBSD 4.1.1-RELEASE FreeBSD 4.1.1-RELEASE and Ports FreeBSD 4.1-RELEASE FreeBSD 4.0-RELEASE FreeBSD 3.5.1-RELEASE FreeBSD 3.5.1-RELEASE and Ports FreeBSD 3.5-RELEASE and Ports FreeBSD 3.4-RELEASE FreeBSD 3.4-RELEASE and Ports FreeBSD 3.3-RELEASE FreeBSD 3.2-RELEASE FreeBSD 3.1-RELEASE FreeBSD 3.0-RELEASE FreeBSD 2.2.8-RELEASE FreeBSD 2.2.8-RELEASE and Ports FreeBSD 2.2.7-RELEASE FreeBSD 2.2.6-RELEASE FreeBSD 2.2.5-RELEASE FreeBSD 2.2.2-RELEASE FreeBSD 2.2.1-RELEASE FreeBSD 2.1.7.1-RELEASE FreeBSD 2.1.6.1-RELEASE FreeBSD 2.1.5-RELEASE FreeBSD 2.1.0-RELEASE FreeBSD 2.0.5-RELEASE FreeBSD 2.0-RELEASE FreeBSD 1.1.5.1-RELEASE FreeBSD 1.1-RELEASE FreeBSD 1.0-RELEASE FreeBSD Ports 15.1 FreeBSD Ports 15.1.quarterly FreeBSD Ports 15.0 FreeBSD Ports 14.4 FreeBSD Ports 14.3 FreeBSD Ports 14.2 FreeBSD Ports 14.1 FreeBSD Ports 14.0 FreeBSD Ports 13.5 FreeBSD Ports 13.4 FreeBSD Ports 13.3 FreeBSD Ports 13.2 FreeBSD Ports 13.1 FreeBSD Ports 13.0 FreeBSD Ports 12.4 FreeBSD Ports 12.3 FreeBSD Ports 12.2 FreeBSD Ports 12.1 FreeBSD Ports 12.0 FreeBSD Ports 11.4 FreeBSD Ports 11.3 FreeBSD Ports 11.2 FreeBSD Ports 11.1 FreeBSD Ports 11.0 FreeBSD Ports 10.4 FreeBSD Ports 10.3 FreeBSD Ports 10.2 FreeBSD Ports 10.1 FreeBSD Ports 10.0 FreeBSD Ports 9.3 FreeBSD Ports 9.2 FreeBSD Ports 9.1 FreeBSD Ports 9.0 FreeBSD Ports 8.4 FreeBSD Ports 8.3 FreeBSD Ports 8.2 FreeBSD Ports 8.1 FreeBSD Ports 8.0 FreeBSD Ports 7.4 FreeBSD Ports 7.3 FreeBSD Ports 7.2 FreeBSD Ports 7.1 FreeBSD Ports 7.0 FreeBSD Ports 6.4 FreeBSD Ports 6.3 FreeBSD Ports 6.2 FreeBSD Ports 6.0 FreeBSD Ports 5.5 FreeBSD Ports 5.4 FreeBSD Ports 5.3 FreeBSD Ports 5.2.1 FreeBSD Ports 5.2 FreeBSD Ports 5.1 FreeBSD Ports 4.11 FreeBSD Ports 4.10 FreeBSD Ports 4.9 FreeBSD Ports 4.8 FreeBSD Ports 4.7 FreeBSD Ports 4.6.2 FreeBSD Ports 4.6 FreeBSD Ports 4.5 FreeBSD Ports 4.3 FreeBSD Ports 4.2 FreeBSD Ports 4.1.1 FreeBSD Ports 3.5.1 FreeBSD Ports 3.5 FreeBSD Ports 3.4 FreeBSD Ports 2.2.8 4.4BSD Lite2 4.3BSD NET/2 4.3BSD Reno 2.11 BSD 2.10 BSD 2.9.1 BSD 2.8 BSD 386BSD 0.1 386BSD 0.0 CentOS 7.9 CentOS 7.8 CentOS 7.7 CentOS 7.6 CentOS 7.5 CentOS 7.4 CentOS 7.3 CentOS 7.2 CentOS 7.1 CentOS 7.0 CentOS 6.10 CentOS 6.9 CentOS 6.8 CentOS 6.7 CentOS 6.6 CentOS 6.5 CentOS 6.4 CentOS 6.3 CentOS 6.2 CentOS 6.1 CentOS 6.0 CentOS 5.11 CentOS 5.10 CentOS 5.9 CentOS 5.8 CentOS 5.7 CentOS 5.6 CentOS 5.5 CentOS 5.4 CentOS 4.8 CentOS 3.9 Darwin 8.0.1/ppc Darwin 7.0.1 Darwin 6.0.2/x86 Darwin 1.4.1/x86 Darwin 1.3.1/x86 Debian 14.0 unstable Debian 13.4.0 Debian 12.13.0 Debian 11.11.0 Debian 10.13.0 Debian 9.13.0 Debian 8.11.1 Debian 7.11.0 Debian 6.0.10 Debian 5.0.10 Debian 4.0.9 Debian 3.1.8 Debian 2.2.7 Debian 2.0.0 Dell UNIX SVR4 2.2 DragonFly 6.4.2 DragonFly 5.8.3 DragonFly 4.8.1 DragonFly 3.8.2 DragonFly 2.10.1 DragonFly 1.12.1 DragonFly 1.0A HP-UX 11.22 HP-UX 11.20 HP-UX 11.11 HP-UX 11.00 HP-UX 10.20 HP-UX 10.10 HP-UX 10.01 HP-UX 9.07 HP-UX 8.07 Inferno 4th Edition IRIX 6.5.30 Linux Slackware 3.1 MACH 2.5/i386 macOS 26.4 macOS 15.7.5 macOS 14.8.5 macOS 13.6.5 macOS 12.7.3 macOS 11.1 macOS 10.15.7 macOS 10.13.6 macOS 10.12.0 Minix 3.3.0 Minix 3.2.1 Minix 3.2.0 Minix 3.1.7 Minix 3.1.6 Minix 3.1.5 Minix 2.0.0 NetBSD 10.1 NetBSD 10.0 NetBSD 9.4 NetBSD 9.3 NetBSD 9.2 NetBSD 9.1 NetBSD 9.0 NetBSD 8.3 NetBSD 8.2 NetBSD 8.1 NetBSD 8.0 NetBSD 7.2 NetBSD 7.1.2 NetBSD 7.1 NetBSD 7.0 NetBSD 6.1.5 NetBSD 6.0 NetBSD 5.2.3 NetBSD 5.2 NetBSD 5.1 NetBSD 5.0 NetBSD 4.0.1 NetBSD 4.0 NetBSD 3.1 NetBSD 3.0 NetBSD 2.1 NetBSD 2.0.2 NetBSD 2.0 NetBSD 1.6.2 NetBSD 1.6.1 NetBSD 1.6 NetBSD 1.5.3 NetBSD 1.5.2 NetBSD 1.5.1 NetBSD 1.5 NetBSD 1.4.3 NetBSD 1.4.2 NetBSD 1.4.1 NetBSD 1.4 NetBSD 1.3.3 NetBSD 1.3.2 NetBSD 1.3.1 NetBSD 1.3 NetBSD 1.2.1 NetBSD 1.2 NetBSD 1.1 NetBSD 1.0 NeXTSTEP 3.3 OpenBSD 7.9 OpenBSD 7.8 OpenBSD 7.7 OpenBSD 7.6 OpenBSD 7.5 OpenBSD 7.4 OpenBSD 7.3 OpenBSD 7.2 OpenBSD 7.1 OpenBSD 7.0 OpenBSD 6.9 OpenBSD 6.8 OpenBSD 6.7 OpenBSD 6.6 OpenBSD 6.5 OpenBSD 6.4 OpenBSD 6.3 OpenBSD 6.2 OpenBSD 6.1 OpenBSD 6.0 OpenBSD 5.9 OpenBSD 5.8 OpenBSD 5.7 OpenBSD 5.6 OpenBSD 5.5 OpenBSD 5.4 OpenBSD 5.3 OpenBSD 5.2 OpenBSD 5.1 OpenBSD 5.0 OpenBSD 4.9 OpenBSD 4.8 OpenBSD 4.7 OpenBSD 4.6 OpenBSD 4.5 OpenBSD 4.4 OpenBSD 4.3 OpenBSD 4.2 OpenBSD 4.1 OpenBSD 4.0 OpenBSD 3.9 OpenBSD 3.8 OpenBSD 3.7 OpenBSD 3.6 OpenBSD 3.5 OpenBSD 3.4 OpenBSD 3.3 OpenBSD 3.2 OpenBSD 3.1 OpenBSD 3.0 OpenBSD 2.9 OpenBSD 2.8 OpenBSD 2.7 OpenBSD 2.6 OpenBSD 2.5 OpenBSD 2.4 OpenBSD 2.3 OpenBSD 2.2 OpenBSD 2.1 OpenBSD 2.0 OpenDarwin 7.2.1 OpenDarwin 6.6.2/x86 OpenDarwin 6.6.1/x86 OpenDarwin 20030208pre4/ppc OpenIndiana 2025.10 OpenIndiana 2024.10 OpenIndiana 2022.10 OpenIndiana 2020.10 OpenIndiana 2017.10 OpenIndiana 2015.10 OpenIndiana 2013.08 OpenSolaris 2010.03 OpenSolaris 2009.06 OpenStep 4.2 openSUSE 42.3 openSUSE 42.2 openSUSE 42.1 openSUSE 16.0 openSUSE 15.6 openSUSE 15.5 openSUSE 15.4 openSUSE 15.3 openSUSE 15.2 openSUSE 15.1 openSUSE 15.0 openSUSE 13.2 openSUSE 13.1 openSUSE 11.4 openSUSE 11.3 openSUSE 11.2 openSUSE 10.3 openSUSE 10.2 OSF1 V5.1/alpha OSF1 V4.0/alpha OSF1 V1.0/mips Plan 9 Red Hat 9.0 Red Hat 8.0 Red Hat 7.3 Red Hat 7.2 Red Hat 7.1 Red Hat 7.0 Red Hat 6.2 Red Hat 6.1 Red Hat 5.2 Red Hat 5.0 Red Hat 4.2 Rhapsody DR1 Rhapsody DR2 Rocky 10.1 Rocky 10.0 Rocky 9.7 Rocky 9.6 Rocky 9.5 Rocky 9.4 Rocky 9.3 Rocky 9.2 Rocky 9.1 Rocky 9.0 Rocky 8.10 Rocky 8.9 Rocky 8.8 Rocky 8.7 Rocky 8.6 Rocky 8.5 Rocky 8.4 Rocky 8.3 Sun UNIX 0.4 SunOS 5.10 SunOS 5.9 SunOS 5.8 SunOS 5.7 SunOS 5.6 SunOS 5.5.1 SunOS 4.1.3 SuSE 11.3 SuSE 11.2 SuSE 11.1 SuSE 11.0 SuSE 10.3 SuSE 10.2 SuSE 10.1 SuSE 10.0 SuSE 9.3 SuSE 9.2 SuSE 8.2 SuSE 8.1 SuSE 8.0 SuSE 7.3 SuSE 7.2 SuSE 7.1 SuSE 7.0 SuSE 6.4 SuSE 6.3 SuSE 6.1 SuSE 6.0 SuSE 5.3 SuSE 5.2 SuSE 5.0 SuSE 4.3 SuSE ES 10 SP1 Ubuntu 26.04 resolute Ubuntu 24.04 noble Ubuntu 23.10 mantic Ubuntu 22.04 jammy Ubuntu 20.04 focal Ubuntu 18.04 bionic Ubuntu 16.04 xenial Ubuntu 14.04 trusty ULTRIX 4.2 Ultrix-32 2.0/VAX Unix Seventh Edition X11R7.4 X11R7.3.2 X11R7.2 X11R6.9.0 X11R6.8.2 X11R6.7.0 XFree86 4.8.0 XFree86 4.7.0 XFree86 4.6.0 XFree86 4.5.0 XFree86 4.4.0 XFree86 4.3.0 XFree86 4.2.99.3 XFree86 4.2.0 XFree86 4.1.0 XFree86 4.0.2 XFree86 4.0.1 XFree86 4.0 XFree86 3.3.6 XFree86 3.3 XFree86 2.1 html pdf ascii

home | help

---

PACKIT(8)	      Packet analysis and injection tool	     PACKIT(8)

NAME
       Packit -	Packet analysis	and injection tool

SYNOPSIS
       Packet capture:
       packit -m capture [-cGHnvsX] [-i	interface] [-r|-w file]	expression

       Packet injection:
       packit  -m inject [-t protocol] [-aAbcCdDeFgGhHjJkKlLmMnNoOpPqQrRsSTuU-
       vwWxXyYzZ] [-i interface]

DESCRIPTION
       Packit is a network auditing tool. It's value is	derived	from its abil-
       ity to customize, inject, monitor, and manipulate IP traffic. By	allow-
       ing you to define (spoof) all TCP, UDP, ICMP, IP, ARP, RARP and	Ether-
       net  header  options, Packit can	be useful in testing firewalls,	intru-
       sion detection systems, port scanning, simulating network  traffic  and
       general	TCP/IP auditing. Packit	is also	an excellent tool for learning
       TCP/IP.

PACKIT BASE OPTIONS
       -m mode
	    Select a runtime mode. Currently supported modes
	    are	capture, inject	and trace. The default is inject.

PACKET CAPTURE OPTIONS
       Packet capture options are as follows:

       -c count
	    Specify the	number of packets to capture

       -e   Display link-layer header data.

       -G   Display the	timestamp in GMT rather	than localtime.

       -i interface
	    Listen on interface. If unspecified, packit	will use the lowest
	    numbered device in the 'up'	state (excluding loopback).

       -n   Don't resolve host addresses to names but resolve ports numbers.
	    Disables DNS lookups.

       -nn  Don't resolve ports	numbers	to their protocol names	but resolve
	    host addresses.

       -nnn Don't resolve host addresses or port numbers.

       -r file
	    Read packet	data from tcpdump formated binary log file. (example:
	    a file created with	-w)

       -s snaplen
	    Read snaplen bytes of data from each packet	rather than the
	    default of 68.

       -v  Enables verbose packet capture.

       -w file
	    Write the raw packets to file rather than displaying time to
	    stderr.

       -X   Display hexadecimal	& ascii	dump of	each packet up to snap
	    length bytes.

       expression
	    selects which packets should be displayed. If no expression	is
	    given, all packets are displayed. See the tcpdump(1) man page for
	    more detailed information.

PACKET INJECTION / TRACE
       Packet injection	is used	to define and inject IP	based network  traffic
       onto your network.  You have the	ability	to define essentially any ARP,
       IP, TCP,	UDP, ICMP and Ethernet header value. This can be valuable in a
       number  of  ways, including testing firewalls, intrusion	detection sys-
       tems, simulating	traffic	flow and general TCP/IP	auditing.

CHOOSE YOUR PROTOCOL
       -t protocol
	    Specify the	type of	packet to inject. Supported values are:	ARP,
	    TCP, UDP and ICMP. This option defaults to TCP
	    in inject mode and ICMP in trace mode.

PACKET INJECTION / TRACE GENERAL
       This section documents the operational command-line options.

       -c count
	    The	value of count is the total number of packets we would like
	    to inject (a count value of	0 means	forver).

       -w interval
	    The	number of seconds to wait between sending each packet burst
	    (default: 1).

       -b burst	rate
	    Specifies the number of packets to inject every interval (defined
	    by -w). (A burst rate of 0 will send packets as quickly as
	    possible)

       -h
	    Host response mode.	Enabling this option will print	any packet
	    you	inject and then	wait (see -H for timeout) to see if the	remote
	    host responds.

       -H timeout
	    Specify the	timeout	value (in seconds) to use with '-h'.
	    This value defaults	to '1' second.

       -i interface
	    Specify the	interface to transmit from, if the machine has
	    multiple interfaces.

       -v
	    Verbose injection mode. Displays each packet you inject. It
	    also has the same effect as	in capture mode	while used with
	    the	'-h' option.

       -p payload
	    This option	defines	the payload portion of the header.
	    Hex	payload	should be prefixed with	'0x' with each value
	    separated by a whitespace.
	    ASCII Example: -p 'hello, this is my packet'
	    Hex	Example: -p '0x	70 61 63 6B 69 74'

       -w interval
	    Specify the	number of seconds to wait between packet bursts.
	    This value defaults	to '1' second.

       -Z length
	    Specify the	size of	the packet(s) to inject. (Max: 65535)

IP HEADER OPTIONS
       This section documents the IP header command-line options.

       -s src address
	    The	IP address the packet will appear to come from.	If
	    unspecified, packit	will default to	the IP address of the
	    lowest numbered device in the 'up' state (excluding	loopback).

       -sR  Use	a random source	IP address.

       -d dst address
	    The	IP address of the machine you would like to contact.

       -dR  Use	a random destination IP	address.

       -o type of service
	    TOS	values are typically in	hexidecimal format, however, packit
	    only accepts TOS values as integers.

	    Below are the 4 valid TOS bit values:

	    - Minimize delay: 16 (0x10)
	    - Maximize throughput: 8 (0x08)
	    - Maximize reliability: 4 (0x04)
	    - Minimize monetary	cost: 2	(0x02)

       -n ID number
	    The	ID number is used to identify each datagram sent by a host.
	    It generally increments by one with	each datagram sent. This
	    value is random by default.

       -T TTL
	    The	TTL value defines the upper limit on the number	of devices
	    through which the datagram may pass	to reach it's destination.
	    The	default	value is 128.

       -V IP protocol number
	    Specify the	IP protocol assocated with this	packet (RAWIP only).
	    The	default	value is 255.

TCP HEADER OPTIONS
       This section documents the TCP header command-line options.

       -S src port
	    The	port from which	our source address is communicating from. This
	    value is random by default.

       -D dst port
	    The	port on	the destination	we would like to communicate on. In
	    inject mode	this value is 0	by default while in trace mode this
	    value is random by default.	You may	also specify a range of
	    addresses in the format: -D	1:1024.

       -f  Do not fragment this	packet.

       -F tcp flags
	    There are 6	TCP header flag	bits. They can be used in combination
	    with one another and are specified using the following
	    identifiers:

	    - S	: SYN (Synchronization sequence	number)
	    - F	: FIN (Sender is finished)
	    - A	: ACK (Acknowledgement number is valid)
	    - P	: PSH (Receiver	should push this data to the remote host)
	    - U	: URG (The urgent pointer is valid)
	    - R	: RST (Reset this connection)

	    As an example, to set the SYN and FIN bits use the
	    following: -F SF

       -q sequence number
	    The	sequence number	is a 32-bit unsigned (positive)	number used
	    to identify	the byte in a stream of	data from the sending TCP
	    to the receiving TCP that the first	byte of	data represents.

       -a ack number
	    The	acknowledgement	(ack) number defines the next sequence
	    number that	the sender of the ack expects to see. It is
	    typically the sequence number + 1 during valid TCP
	    communication. It is a 32-bit unsigned (positive) number.

       -W window size
	    The	window size provides flow control. It is a 16-bit
	    number that	defines	how many bytes the receiver is willing
	    to accept. The default value is 1500.

       -u urgent pointer
	    In valid TCP communication,	the urgent pointer is
	    only useful	if the URG flag	is set.	Used with the
	    sequence number, it	points to the last byte	of urgent
	    data.

UDP HEADER OPTIONS
       This section documents the UDP header command-line options. UDP is  the
       default IP protocol for TRACE mode.

       -S src port
	    The	port from which	our source address is communicating from. This
	    value is random by default.

       -D dst port
	    The	port on	the destination	we would like to communicate on. In
	    inject mode	this value is 0	by default while in trace mode this
	    value is random by default.	You may	also specify a range of
	    addresses in the format: -D	1:1024.

ICMP HEADER OPTIONS
       This section documents the ICMP header command-line options.

       -K type
	    Specify the	ICMP type. See docs/ICMP.txt for details on types.

       -C code
	    Specify the	ICMP code. See docs/ICMP.txt for details on codes.

       ECHO REQUEST / ECHO REPLY OPTIONS

       -N id number
	    Define the 16-bit ICMP identification number. This value is
	    random by default.

       -Q sequence number
	    Define the 16-bit ICMP sequence number. This value is random
	    by default.

       UNREACHABLE / REDIRECT /	TIME EXCEEDED OPTIONS

       -g gateway
	    Define the gateway in which	to redirect traffic to.	This option
	    is only used for ICMP redirects (type 5).

       -j address
	    Define the source address of the original packet.

       -J src port
	    Define the source port of the original packet.

       -l address
	    Define the destination address of the original packet.

       -L dst port
	    Define the destination port	of the original	packet.

       -m time to live
	    Define the Time To Live of the original packet. This option
	    defaults to	128.

       -M id
	    Define the IP ID of	the original packet. This option defaults
	    to random.

       -O type of service
	    Define the Type of Service of the original packet. See the
	    -o option for the possible values.

       -P protocol
	    Define the protocol	of the original	packet.	This option
	    defaults to	UDP.

       MASK REQUEST / MASK REPLY OPTIONS

       -N id number
	    Define the 16-bit ICMP identification number. This value is
	    random by default.

       -Q sequence number
	    Define the 16-bit ICMP sequence number. This value is random
	    by default.

       -G address mask
	    Define the address network mask. The default value for this
	    option is:255.255.255.0.

       TIMESTAMP REQUEST / TIMESTAMP REPLY OPTIONS

       -N id number
	    Define the 16-bit ICMP identification number. This value is
	    random by default.

       -Q sequence number
	    Define the 16-bit ICMP sequence number. This value is random
	    by default.

       -U original timestamp
	    Define the 32-bit original timestamp. This value is	0
	    by default.

       -k recieved timestamp
	    Define the 32-bit recieved timestamp. This value is	0
	    by default.

       -z transmit timestamp
	    Define the 32-bit transmit timestamp. This value is	0
	    by default.

ARP HEADER OPTIONS
       This section documents the ARP header command-line options. In my opin-
       ion,  these  options  have  the	ability	to do the most damage with the
       least effort, especially	on large cable and DSL networks. Use with cau-
       tion.

       Packit only supports ARP	protocol addresses in IPv4 format

       -A operation type
	    Define the ARP / RARP / IRARP operation type. The valid options
	    are	as follows:

	    - 1	: ARP Request
	    - 2	: ARP Reply
	    - 3	: Reverse ARP Request
	    - 4	: Reverse ARP Reply
	    - 5	: Inverse ARP Request
	    - 6	: Inverse ARP Reply

       -y target IP address
	    The	IP address of the target host.

       -yR  Use	a random target	host IP	address.

       -Y target ethernet address
	    The	ethernet (hardware) address of the target host.

       -YR  Usage a random target host ethernet	address.

       -x sender IP address
	    The	IP address of the sender host.

       -xR  Use	a random sender	host IP	address.

       -X sender ethernet address
	    The	ethernet (hardware) address of the sender host.

       -XR  Usage a random sender host ethernet	address.

ETHERNET HEADER	OPTIONS
       This section documents the Ethernet header command-line options.

       -e src ethernet address
	    The	ethernet (hardware) address the	packet will appear to come
	    from.

       -eR  Use	a random source	ethernet address.

	    If you define this,	you will most likely need to define the
	    destination	ethernet header	value as well. When using either -e or
	    -E,	you enable link	level packet injection and enable link level
	    packet injection and the destination cannot	be auto-defined	while
	    injecting in this manner.

       -E dst ethernet address
	    The	ethernet (hardware) of the next	routable interface the packet
	    will cross while making it's way to	the destination.

       -ER  Use	a random destination ethernet address.

       The following two rules should be followed if  you  actually  want  the
       destination to receive to receive the packets you're sending:

       1)   If the destination exists beyond your default route	(gateway),
	    the	destination ethernet address should be set to the default
	    routes address should be set to the	default	routes ethernet
	    address. This can typically	be found by using the arp(8) command.

       2)   If the destination exists on your subnet, the destination
	    ethernet address should be set to its ethernet address. This
	    can	typically be found by using the	arp command.

PACKET CAPTURE EXAMPLES
       To  print  all TCP communications that doesn't revolve around SSH (port
       22).
	    packit -m cap 'tcp and not port 22'

       To print	the start and end packets (the SYN and	FIN   pack-  ets)   of
       each   TCP  conversation	 that involves a non-local host, don't resolve
       addresses and display hex/ascii dump of the packet.

	    packit -m cap -nX 'tcp[tcpflags] & (tcp-syn|tcp-fin) != 0
		   and not src and dst net localnet'

       To write	the first 10 ICMP packets captured to a	file.

	    packit -m cap -c 10	-w /tmp/mylog 'icmp'

PACKET INJECTION EXAMPLES
       IMPORTANT: The ethernet address 'f:00:d:f:00:d' in these	examples is  a
       mock representation of the ethernet address of my default route.	In or-
       der for these examples to work properly,	you would need to change it to
       your correct default route ethernet address.

       Inject  10  ICMP	 type 8	(echo request) packets from host '3.1.33.7' to
       host '192.168.0.1' and watch for	a response.

	    packit -t icmp -s 3.1.33.7 -d 192.168.0.1 -c 10 -h

       Inject an ICMP type 18 (mask reply) packet with an ICMP id of  211  and
       an address mask of 255.255.255.0.

	    packit -t icmp -K 18 -d 127.0.0.1 -N 211 -G	255.255.255.0

       Inject  5 TCP packets from random hosts to 'www.microsoft.com' with the
       SYN flag	set, a window size of 666, a random source ethernet address, a
       destination ethernet address of f:00:d:f:00:d, with a  payload  of  "HI
       BILL", displaying each packet injected.

	    packit -sR -d www.microsoft.com -F S -c 5 -W 666
		   -eR -E f:00:d:f:00:d	-p 'HI BILL' -v

       Inject  a total of 1000 TCP packets in 20 packet	per second bursts from
       192.168.0.1 on port 403 to 192.168.0.20 on port 80 with the SYN and RST
       flags set, a sequence number of 12345678910 and a source	 ethernet  ad-
       dress of	0:0:0:0:0:0.

	    packit -s 192.168.0.1 -d 192.168.0.20 -S 403 -D 80
		   -F SR -q 12345678910	-c 1000	-b 20 -e 0:0:0:0:0:0

       Inject  a  TCP  packets	from 10.22.41.6	to 172.16.1.3 on ports ranging
       from 1-1024 with	the SYN	flag set and display each packet we send.

	    packit -s 10.22.41.6 -d 172.16.1.3 -D 1-1024 -F S -v

       Inject a	broadcast ARP reply stating that 4.3.2.1  is  at  5:4:3:2:1:0.
       Also, spoof the source ethernet adddress	for a little more authenticity
       and supply the payload in hex.

	    packit -t arp -A 2 -x 4.3.2.1 -X 5:4:3:2:1:0 -e 5:4:3:2:1:0
		   -p '0x 70 61	63 6B 69 74'

TRACE ROUTE EXAMPLES
       Appear as a DNS response	by using a UDP source port of 53 (DNS)

	    packit -m trace -t UDP -d 192.168.2.35 -S 53

       Appear as HTTP traffic by using TCP port	80

	    packit -m trace -t TCP -d www.google.com -S	80 -FS

SEE ALSO
       pcap(3),	bpf(4),	libnet(3), tcpdump(1)

BUGS
       Due  to limitations in some versions of *BSD, specifying	arbitrary eth-
       ernet and/or ARP	header data may	not be supported.

       ARP capture data	is incomplete.

       Like this man page, packit is still  very  much	a  work	 in  progress.
       Please	send   bug  reports,  questions	 or  requests  to  dbounds@in-
       trusense.com.

AUTHOR
       Darren Bounds <dbounds@intrusense.com>

       The latest version can be found at:
	      http://packetfactory.openwall.net/projects/packit/

Packit @PACKIT_VERSION@		  10 20	2002			     PACKIT(8)

---

NAME | SYNOPSIS | DESCRIPTION | PACKIT BASE OPTIONS | PACKET CAPTURE OPTIONS | PACKET INJECTION / TRACE | CHOOSE YOUR PROTOCOL | PACKET INJECTION / TRACE GENERAL | IP HEADER OPTIONS | TCP HEADER OPTIONS | UDP HEADER OPTIONS | ICMP HEADER OPTIONS | ARP HEADER OPTIONS | ETHERNET HEADER OPTIONS | PACKET CAPTURE EXAMPLES | PACKET INJECTION EXAMPLES | TRACE ROUTE EXAMPLES | SEE ALSO | BUGS | AUTHOR

Want to link to this manual page? Use this URL:
<https://man.freebsd.org/cgi/man.cgi?query=packit&sektion=8&manpath=FreeBSD+Ports+15.1.quarterly>

home | help

---

Legal Notices | © 1995-2026 The FreeBSD Project. All rights reserved.

Contact