COMPGROUPS.NET | Search | Post Question | Groups | Stream | About | Register

Packet capture problem

  • Follow


Short question: I am modifying some code that utilizes the BPF. The
filter is hard-coded in "packet filter assembler", but I would like to
use libpcap:s pcap_compile() function to create a filter from a command
string, e.g. "tcp and port 67 and ..." as in W.R. Stevens' UNP. Now my
question: The existing code does not use libpcap to open sniffing
devices etc, instead it does an open() directly on /dev/bpfN and I
would
like to keep it that way. However, pcap_compile() needs a pcap_t device

handle. Can I use libpcap functions to open a sniffing device to create
the
pcap_t handle, compile the filter with pcap_compile(), then use this
filter
with a the /dev/bpf type device opened by the existing code? (the
existing code
uses the same filter structs as libpcap)

(obviously, if the existing code opens a sniffing device that monitors
eth0, I would need to make the pcap_t handle also correspond to eth0 to
get useful compiled code out of pcap_compile())


Best regards,

/Erik Alap=E4=E4
0
Reply alapaa (3) 8/25/2005 12:29:27 PM

comp.unix.programmer 10538 articles. 63 followers.

0 Replies
121 Views

(page loaded in 0.039 seconds)

Similiar Articles:

snoop- capture and inspect network packets - comp.unix.solaris ...
... it is not possible to sniff network traffic using the typical Windows packet capture ... ... activity - comp.unix.solaris ..... have no experience diagnosing network problems.

FCIP issues with SAN replication - comp.dcom.sys.cisco
When you get it working you can have a look at a packet capture to give you a rough ... The big huge >problem is that after running for several hours they ll ...

stream class video capture minidriver porting to windows 7 X64 ...
... mission porting original stream class video capture minidriver to windows 7 X64. And I find an interesting problem..... ... to return the data packet. But when the application ...

Cisco ASA: VPN behaviour when packet loss is high on WAN - comp ...
How will i capture loop back interface traffic? - comp.unix ... problem - extremly high packets received - comp.os.ms-windows ... packet loss on loopback interface ...

packet loss on loopback interface!? - comp.unix.solaris
How will i capture loop back interface traffic? - comp.unix ... That might solve the sleep problem, but my traffic would be very bursty. ... packet loss on loopback ...

No tftpdnld command - comp.dcom.sys.cisco
A common problem is using ftp ascii mode to transfer the files. Use binary mode ... server - except that if now comes with unwanted baggage:-) Run a packet capture on ...

monitoring traffic cisco 2600 router - comp.dcom.sys.cisco ...
12.4(20)T and later has an additional packet capture facility. http://www.cisco.com/en ... Problem with GRE (cisco 887, wlan, bvi) - comp.dcom.sys.cisco ... If the Ethernet ...

How can you get an incomplete ARP? - comp.dcom.sys.cisco ...
> In this case there was a problem with the routing on the host. > So in other ... To investigate further you could try:- - Packet capture with some external device say ...

fork (UDP) server - comp.unix.programmer
i'm writing a UDP protocol to transfer file, I have a problem into serverside ... need a concurrent server for 2 reasons : 1) Use more clients 2) capture an wrong packet ...

DHCP relay through a site-to-site VPN - comp.dcom.sys.cisco ...
> use the capture command to verify that PIX is receiving DHCP ... I ran a network monitor there, and no packet reaches the server. So I guess the problem is the PIX at site1?

Packet capture - Wikipedia, the free encyclopedia
Packet capture is the act of capturing data packets crossing a computer network. ... data, perform forensics analysis to uncover the root cause of network problems ...

SonicOS: How to Use the "Packet Capture" Diagnostic Tool for ...
SonicOS: How to Use the "Packet Capture" Diagnostic Tool for Troubleshooting Network Problems

7/18/2012 1:55:02 AM


Reply:
Privacy Policy | All Times Are GMT(UTC) | powered by