tcpdump mailing list archives

Previous By Date Next
Previous By Thread Next

Re: important query on tcpdump header files and source codes

From: Max Laier <max () love2party net>
Date: Wed, 16 Jul 2008 09:53:31 +0200
On Wednesday 16 July 2008 09:09:31 Ignacio, Domingo Jr Ostria - igndo001 
wrote:

Or 2. When the tcpdump do the packet capture, is it looking/utilizing
the kernel variables within the protocol stacks or it is operating
independently from the kernel?( Sorry about this question guys, just
need probably to read more on tcpdump packet capturing thru libpcap:))


If you are interested in the state stored in the kernel tcpcb you might 
want to look at trpt(8): http://www.freebsd.org/cgi/man.cgi?query=trpt

It is available on at least FreeBSD, MacOS X and it seems AIX.  Not sure 
if there is an equivalent in Linux, though.

-- 
/"\  Best regards,                      | mlaier () freebsd org
\ /  Max Laier                          | ICQ #67774661
 X   http://pf4freebsd.love2party.net/  | mlaier@EFnet
/ \  ASCII Ribbon Campaign              | Against HTML Mail and News
-
This is the tcpdump-workers list.
Visit https://cod.sandelman.ca/ to unsubscribe.
Previous By Date Next
Previous By Thread Next

Current thread: