tcpdump mailing list archives

Previous By Date Next
Previous By Thread Next

reading .cap files

From: Andrej van der Zee <andrejvanderzee () gmail com>
Date: Tue, 12 May 2009 17:32:33 +0900
Hi,

Sorry if it has been asked before.

I need to read .cap files produced by tcpdump from c/c++. More specific, I
need to read the timestamp, the protocol, the number of bytes of the package
(including the data) and the destination IP of each package in .cap. My
questions are:

* I have no control over the version of tcpdump that is being used for the
generation of .cap files. Do I have to write different code for many
versions of tcpdump?
* What library can I use?

Thank you,
Andrej
-
This is the tcpdump-workers list.
Visit https://cod.sandelman.ca/ to unsubscribe.
Previous By Date Next
Previous By Thread Next

Current thread: