tcpdump mailing list archives
Re: libpcap patches for DLT_SITA support
From: Guy Harris <guy () alum mit edu>
Date: Sun, 06 Jan 2008 13:46:59 -0800
Fulko Hew wrote:
On one hand, my version queries and interoperates with remote devices to allow remote capture. What it does do (unfortunately right now) is ignore any 'local' linux monitorable devices. It would be nice to be able to monitor/select either remote (SITA) or local (Linux) devices.
Make that "or local devices", without the "(Linux)" part. There's no need to restrict this to Linux; it's just code that connects to a remote TCP server and exchanges messages with it.
What we probably really need is a syntax to specify remote as well as local devices. WinPcap supports a pcap_open() routine that takes a URL as an argument:
http://www.winpcap.org/docs/docs_41b2/html/group__remote__source__string.html
We could have an (unofficial) "sita:" URL scheme to specify SITA
devices, just as we could have other schemes to specify protocols other
than rpcap (e.g., perhaps "ssh:" to specify that tcpdump should be run
remotely to do the capture).
With that approach - and probably with other approaches - having a separate file for the SITA code would still be appropriate.
- This is the tcpdump-workers list. Visit https://cod.sandelman.ca/ to unsubscribe.
Current thread:
- Re: libpcap patches for DLT_SITA support Guy Harris (Jan 06)
- Re: libpcap patches for DLT_SITA support Fulko Hew (Jan 06)
- Re: libpcap patches for DLT_SITA support Guy Harris (Jan 06)
- Re: libpcap patches for DLT_SITA support Fulko Hew (Jan 06)
- Re: libpcap patches for DLT_SITA support Guy Harris (Jan 06)
- Re: libpcap patches for DLT_SITA support Guy Harris (Jan 06)
- Re: libpcap patches for DLT_SITA support Fulko Hew (Jan 06)
- Re: libpcap patches for DLT_SITA support Fulko Hew (Jan 07)
- libpcap patches for DLT_SITA support Fulko Hew (Jan 07)