tcpdump -A -i any 'port 1333 and (((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)'
The example above captures all TCP traffic at port 133 and filter out the TCP session setup (SYN / FIN / ACK)
-A
Print each packet (minus its link level header) in ASCII. Handy for capturing web pages.-i any
Include all interfacesport 1333
Only look at TCP traffic to/from port 1333(((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)
filter out the TCP session setup (SYN / FIN / ACK)