On 2015-08-17 at 21:17:15 +0200, Vadim Kochan vadi...@gmail.com wrote:
Allow to collect rx stats for multiple pcap mode, by storing
them in separated variables before switch to the next pcap file.
It allows to have the one approach when dump for single or multiple
pcap(s) mode.
On 2015-08-20 at 09:49:26 +0200, Kartik Mistry kartik.mis...@gmail.com wrote:
On Thu, Aug 20, 2015 at 12:59 PM, Tobias Klauser tklau...@distanz.ch wrote:
I made some minor changes to the Debian packaging of netsniff-ng, based off
the
repo at git://anonscm.debian.org/collab-maint/netsniff
Signed-off-by: Tobias Klauser tklau...@distanz.ch
---
debian/changelog | 2 ++
debian/rules | 2 +-
2 files changed, 3 insertions(+), 1 deletion(-)
diff --git a/debian/changelog b/debian/changelog
index b6b8ce1..e545be8 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -3,6 +3,8
On 2015-08-16 at 23:21:29 +0200, Vadim Kochan vadi...@gmail.com wrote:
It might be useful to sniff for vlan header info which might be not injected
into packet if reordering is on and if physical device supports VLAN
offloading.
But these fields are kept in skb and are stored in tpacket v2/v3
On 2015-08-04 at 01:13:59 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Do not do reverse DNS for src hostname if '-s' option
is not specified.
Signed-off-by: Vadim Kochan vadi...@gmail.com
Applied, thanks.
--
You received this message because you are
On 2015-08-04 at 00:52:07 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Don't hide status bar line when dumping flows but
print [Collecting flows ...] on the same line.
Really there is no sense to hide this status bar line.
Signed-off-by: Vadim Kochan
On 2015-08-04 at 07:58:54 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Just ignore DNS flows instead of insert it and then
filter it out by presenter.
Signed-off-by: Vadim Kochan vadi...@gmail.com
This fails to apply on top of your previous patch
On 2015-08-01 at 16:42:51 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Show bytes/pkts counters per src/dst direction.
By default counters originated from dst are showed.
Src counters are showed only if '-s' is specified.
Signed-off-by: Vadim Kochan
On 2015-08-02 at 14:29:09 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
In case if regular user opens pcap file then netsniff-ng tries to
setup socket memory which causes warning about failing because
of permissions.
So lets do not tune socket memory on
On 2015-08-01 at 16:51:36 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Add some explanation about traffic counters enabling via
sysctl and its limitation.
Signed-off-by: Vadim Kochan vadi...@gmail.com
Applied with some minor rewordings. Thanks Vadim.
On 2015-07-30 at 12:33:35 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Thu, Jul 30, 2015 at 11:36:44AM +0200, Tobias Klauser wrote:
On 2015-07-30 at 10:55:06 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Thu, Jul 30, 2015 at 09:09:13AM +0200, Tobias Klauser wrote:
On 2015-07-29
On 2015-07-29 at 17:07:29 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
In the previous version there was no panic if
file does not exist, so lets follow this behaviour.
In my opinion the current behavior is fine. These files should exists on
any decent
On 2015-07-30 at 10:55:06 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Thu, Jul 30, 2015 at 09:09:13AM +0200, Tobias Klauser wrote:
On 2015-07-29 at 17:07:29 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
In the previous version there was no panic
On 2015-07-27 at 00:24:51 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
There might be new fast connection between flush
handling new events which can be not handled,
so put flushing connections before loop.
Signed-off-by: Vadim Kochan
On 2015-07-13 at 22:03:05 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Added periodic dump of existing and visible flow to update packets bytes
counters.
Needs to clone nf_conntrack object for new added flow entry to
update counters for this
On 2015-07-17 at 13:46:47 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Fri, Jul 17, 2015 at 01:42:56PM +0200, Tobias Klauser wrote:
On 2015-07-13 at 22:03:05 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Added periodic dump of existing
On 2015-07-02 at 20:41:20 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Add the same note about using iptables to activate conntrack as it is
already described in 'flowtop -h', just to keep it in the man page too.
Signed-off-by: Vadim Kochan
On 2015-06-30 at 11:41:04 +0200, Daniel Borkmann borkm...@iogearbox.net wrote:
On 06/29/2015 02:58 AM, Vadim Kochan wrote:
Hi,
This is the 1-st try version of how I see the protocol generation API for
the
trafgen util as mz replacement (at least for better performance).
I am sending
On 2015-06-30 at 12:31:50 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Tue, Jun 30, 2015 at 11:41:04AM +0200, Daniel Borkmann wrote:
On 06/29/2015 02:58 AM, Vadim Kochan wrote:
Hi,
This is the 1-st try version of how I see the protocol generation API
for the
trafgen util as mz
On 2015-06-30 at 12:00:55 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Tue, Jun 30, 2015 at 11:41:04AM +0200, Daniel Borkmann wrote:
On 06/29/2015 02:58 AM, Vadim Kochan wrote:
Hi,
This is the 1-st try version of how I see the protocol generation API
for the
trafgen util as mz
On 2015-06-27 at 11:03:25 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Print minimum needed packet size in case if validation error.
Applied, thanks Vadim!
--
You received this message because you are subscribed to the Google Groups
netsniff-ng group.
On 2015-06-24 at 09:10:01 +0200, James Burnett james.burn...@geant.org wrote:
To update:
If I manually create the /usr/local/share/man/man8/ folder, it installs fine.
Thanks for the follow up. I think the problem is that our install rule
doesn't create the directories and as they didn't seem
On 2015-05-20 at 11:40:14 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Print each country channel info on separated line to
make it more readable:
IE: Country (7, Len(66)): Country String: US
First Ch Nr: 36, Nr of Ch: 1, Max Transmit Pwr Lvl: 24
On 2015-05-13 at 11:54:01 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Wed, May 13, 2015 at 11:45:16AM +0200, Daniel Borkmann wrote:
On 05/13/2015 11:31 AM, Vadim Kochan wrote:
On Wed, May 13, 2015 at 11:24:11AM +0200, Daniel Borkmann wrote:
On 05/13/2015 11:21 AM, Vadim Kochan wrote:
On 2015-05-20 at 16:34:44 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Wed, May 20, 2015 at 04:30:30PM +0200, Tobias Klauser wrote:
On 2015-05-13 at 11:54:01 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Wed, May 13, 2015 at 11:45:16AM +0200, Daniel Borkmann wrote:
On 05/13/2015 11
On 2015-05-19 at 06:42:50 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Dump RTnetlink interface related info with attributes.
Signed-off-by: Vadim Kochan vadi...@gmail.com
---
netsniff-ng/Makefile | 2 +
proto_nlmsg.c| 232
On 2015-05-18 at 10:36:53 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Pull print more Netlink messages from one packet
which can be sent with MULTI flag.
Signed-off-by: Vadim Kochan vadi...@gmail.com
Thanks! I applied this now.
--
You received this
On 2015-05-05 at 12:29:24 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Print 'Family' and 'Type' (considering family) fields in less mode.
Signed-off-by: Vadim Kochan vadi...@gmail.com
Applied, thanks.
--
You received this message because you are
On 2015-05-04 at 11:32:33 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Print similar header fields in less mode as it is done in
full mode.
In my opinion it's fine as it is now and I'd like to keep the *_less
outputs as sparse as possible. If the user
On 2015-05-04 at 10:11:21 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Rename xxx_panic_func(s) to xxx_panic_handler(s)
which is more understandable than 'func'.
Signed-off-by: Vadim Kochan vadi...@gmail.com
Applied now, thanks.
--
You received this
On 2015-05-05 at 11:43:03 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Tue, May 05, 2015 at 11:20:42AM +0200, Tobias Klauser wrote:
On 2015-05-04 at 11:32:33 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Print similar header fields in less mode
On 2015-05-04 at 19:16:39 +0200, Vadim Kochan vadi...@gmail.com wrote:
Hi,
In less mode (netsniff-ng -i dev --less) the color ESC terminal
sequences can be broken by automatic indentation made in
tprintf.c: __tprint_flush
which can add spaces or new line within of this sequence.
On 2015-05-05 at 09:44:57 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Automatic new line indentation can break terminal
ESC color sequence by inserting new line within it.
Fixed by considering that color ESC sequence is not closed
by 'm' and only
On 2015-05-02 at 22:07:13 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
As Probe Response frame is very similar to Beacon
(except some IEs which are identified dynamically)
so lets just use the same func to dissect it.
Signed-off-by: Vadim Kochan
On 2015-04-27 at 17:49:32 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
As probe request frame consist only with IE params so just
do a similar print of these params as it was done for beacon.
Also using mgmt_{func}_dissect naming for mgmt frame
On 2015-04-29 at 21:18:24 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
It might be related to the issue #73 noticed by
Jon Schipp jonsch...@gmail.com
where he pointed that netsniff-ng captures some extra packets.
I observed this issue when I
On 2015-04-23 at 10:38:16 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
[...]
Signed-off-by: Vadim Kochan vadi...@gmail.com
Applied, thanks.
--
You received this message because you are subscribed to the Google Groups
netsniff-ng group.
To unsubscribe from
On 2015-04-25 at 09:07:35 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Thu, Apr 23, 2015 at 02:24:16PM +0300, Vadim Kochan wrote:
static inline void __show_frame_hdr(uint8_t *packet, size_t len, int
linktype,
struct sockaddr_ll *s_ll, void *raw_hdr,
-
On 2015-04-22 at 16:07:29 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Add error cause message when ioprio_setpid fails.
Signed-off-by: Vadim Kochan vadi...@gmail.com
Applied, thanks!
--
You received this message because you are subscribed to the
On 2015-04-22 at 18:26:11 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
It allows to read pcap file for users who have no
permissions to set process IO prio.
Signed-off-by: Vadim Kochan vadi...@gmail.com
Applied with Daniel's Acked-by. Thanks a lot
On 2015-04-17 at 21:04:21 +0200, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Fixed case when netsniff fails if there is already existing monX device
while generating.
Signed-off-by: Vadim Kochan vadi...@gmail.com
Applied. Thanks Vadim!
--
You received this
On 2015-04-11 at 18:59:08 +0200, Michał Purzyński michalpurzyns...@gmail.com
wrote:
OK, try one. I'm ready to accept heavy artillery fire ;-) Man, it
takes a while to find a free letter for getopt.
Two new parameters were added:
-C cluster id with integer that represents the socket fanout
On 2015-03-24 at 12:20:39 +0100, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Trafgen uses all the online cpus even if number of packets specified
by -n is less than numbers of selected cpus.
Such behaviour leads to issues:
- trafgen re-calculates number
On 2015-03-30 at 11:54:40 +0200, Vadim Kochan vadi...@gmail.com wrote:
On Sun, Mar 22, 2015 at 01:48:50PM +0200, Vadim Kochan wrote:
From: Vadim Kochan vadi...@gmail.com
mz fails start in cli mode and prints each time different pcap errors:
$ mz -x -V
fatal flex scanner
On 2015-03-21 at 22:58:17 +0100, Vadim Kochan vadi...@gmail.com wrote:
From: Vadim Kochan vadi...@gmail.com
Signed-off-by: Vadim Kochan vadi...@gmail.com
Applied, thank you Vadim!
--
You received this message because you are subscribed to the Google Groups
netsniff-ng group.
To unsubscribe
On 2015-02-20 at 12:39:07 +0100, Vadim Kochan vadi...@gmail.com wrote:
Fixed warnings:
Warning: [lookupdev.c get_dev_params()] Cannot open socket!
when specify help for packet type:
# mz -t tcp help
Also fixes delayed output of the same command if user is root.
Signed-off-by:
On 2014-07-18 at 15:09:55 +0200, 'peter' via netsniff-ng
netsniff-ng@googlegroups.com wrote:
hi,
im looking for a way to automate packet generation for traffic
shaper testing.
found a testfile online and modified it a bit, only
source/destination ip are valid for the interface ...the
port and ethertype lookup from dissector into own module,
thus making flowtop no longer depend on the dissector modules. This fixes
flowtop build which was broken in v0.5.9-rc1. By Tobias Klauser.
Contributions since last release:
8 Tobias Klauser
Git changelog since last release
On 2014-06-12 at 16:46:42 +0200, Tobias Klauser tklau...@distanz.ch wrote:
In the interest of getting back to more regular and more frequent releases,
here
goes the first release candidate for the netsniff-ng toolkit. It's nothing too
spectacular, mostly bugfixes and cleanups - see
):
git tag -v v0.5.9-rc1
Major high-level changes since the last release are:
1) Add a rudimenatry netlink message dissector to netsniff-ng, from Tobias
Klauser.
2) Use printf/scanf format specifiers for fixed width types (fixing a crash of
ifpps in 32 bit environments), from James McCoy
3
On 2014-04-30 at 21:20:03 +0200, Michal Purzynski michalpurzyns...@gmail.com
wrote:
There's a fix now in the master branch of netsniff-ng.git [1]. Can you
confirm that this fixes the issue for you? Does it influence the
losslessness of your setup if you specify large ring sizes?
[1]
201 - 251 of 251 matches
Mail list logo