tcpdump mailing list archives

Previous By Date Next
Previous By Thread Next

Re: How to extract the source name field data of

From: itojun () itojun org (Jun-ichiro itojun Hagino)
Date: Fri, 28 May 2004 14:15:07 +0900 (JST)
Hi,
   I am capturing the NetBeui (NBF) packets by using the following command:

tcpdump -X netbuie

I am getting a range of data, but, is there a way to determine which part of
the packet to extract? I am interested in the 16 byte "Source Name" field
(Name to add) as shown below. I want to extract the name SHEILA only.

15:12:21.446893 NetBeui Packet
0x0000   f0f0 032c 00ff ef01 0000 0000 0000 0000        ...,............
0x0010   0000 0000 0000 0000 0000 0000 0000 0053        ...............S
0x0020   4845 494c 4120 2020 2020 2020 2020 03          HEILA..........


        if you are doing live capture on network, bigger capture size like
        "-s 2000" will help you.   otherwise, binary capture file won't have
        enough data so you can do nothing about it.

itojun
-
This is the tcpdump-workers list.
Visit https://lists.sandelman.ca/ to unsubscribe.
Previous By Date Next
Previous By Thread Next

Current thread: