Booting Process:

https://www.linuxbuzz.com/step-by-step-linux-rhel-6-7-boot-process-for-beginners/
Go through the youtube link fir understanding booting process.
https://www.youtube.com/watch?v=ZtVpz5VWjAs
=====================================================================
tcpdump:
Tcpdump is a command line utility that allows you to capture and analyze network
traffic going through your system. It is often used to help troubleshoot network
issues, as well as a security tool.
A powerful and versatile tool that includes many options and filters, tcpdump can
be used in a variety of cases. Since it's a command line tool, it is ideal to run
in remote servers or devices for which a GUI is not available, to collect data that
can be analyzed later. It can also be launched in the background or as a scheduled
job using tools like cron.
To get the network packets from a single interface, use
$ tcpdump -i eth0
To write all the captured packets to a file, use the ‘-w’ option,
$ tcpdump -i eth1 -w packets_file
To read an already created, old tcpdump file, use the following command,
$ tcpdump -r packets_file
Capture all packets in any interface by running this command:
$ sudo tcpdump -i any
sudo tcpdump -i any -w webserver.pcap
This command saves the output in a file named webserver.pcap. The .pcap extension
stands for "packet capture" and is the convention for this file format.
Tcpdump creates a file in binary format so you cannot simply open it with a text
editor. To read the contents of the file, execute tcpdump with the -r option:
tcpdump -nn -r webserver.pcap