Re: modifying source code

[Hannes Gredler <hannes () juniper net>]

On Tue, Aug 17, 2004 at 03:16:27AM +0100, neha agrawal wrote:
| hello!
|         i am capturing packets using tcpdump. i want
| to read the packet header and all.. as tcpdump reads
| and put the information in data base.i dont want to
| read  from output generated by tcpdump.. but read
| information of packets as and when tcpdump reads.. and
| put them in database.. can u let me know which source
| files i need to modify. is there some document
| describing flow of the source code of tcpdump..
|     thanks
|                         neha


neha,

as a good start i would encourage you to read through the

ethernet [print-ethernet.c]
ip       [print-ip.c]
and ppp  [print-ppp.c]

printers;

it should not be too difficult to hook in a database dumper;

/hannes
-
This is the tcpdump-workers list.
Visit https://lists.sandelman.ca/ to unsubscribe.