Guy Harris wrote:
> When do you expect the new format will be available?
I don't think we have a date yet. I think we'd like to finish up the
specification soon; it'll take longer to implement APIs to use all the
capabilities, although we could probably add the ability to read those
files - or, a
On Wed, Aug 18, 2004 at 06:36:22PM +0200, Karsten Keil wrote:
> Hi Hannes,
>
> On Wed, Aug 18, 2004 at 05:27:41PM +0200, Hannes Gredler wrote:
> > karsten,
> >
> > i have checked in support for DLT_PPP_WITH_DIRECTION in
> > tcpdump and the PPP printer - the PPP printer shows now
> > the direction
ury segal wrote:
Thanks for the answer!
There is nothing similar to ip_loopback_bypass
in Solaris.
The be all and end all of Unix OSes has no such thing?!? Imagine :)
When I run netstat -i, I do see packets that
are "passed through" the localhost interface.
Is there a real entity in the kernel whi
Hannes Gredler wrote:
i have checked in support for the new DLT_PPP_WITH_DIRECTION (166) and
LINKTYPE_PPP_WITH_DIRECTION (166)
Hmm. From what Karsten says, it's a bit special, with the 0xff in the
HDLC-like header replaced by a direction flag, rather than wit
Thanks for the answer!
There is nothing similar to ip_loopback_bypass
in Solaris.
When I run netstat -i, I do see packets that
are "passed through" the localhost interface.
Is there a real entity in the kernel which is the
loopback interface, may it be a driver (seems not to
be one), STREAMS mo
Hi Hannes,
On Wed, Aug 18, 2004 at 05:27:41PM +0200, Hannes Gredler wrote:
> karsten,
>
> i have checked in support for DLT_PPP_WITH_DIRECTION in
> tcpdump and the PPP printer - the PPP printer shows now
> the direction (hidden under the -e flag)
>
> /hannes
>
Thank you very much for this work
karsten,
i have checked in support for DLT_PPP_WITH_DIRECTION in
tcpdump and the PPP printer - the PPP printer shows now
the direction (hidden under the -e flag)
/hannes
---
karsten,
i have checked in support for the new DLT_PPP_WITH_DIRECTION (166) and
L
The Solaris and HP-UX 11.X stacks are "cousins" so this may help, it
may not...
Under HP-UX, if the traffic is to a machine-local IP address, it gets
looped-back in IP and never gets through DLPI into a driver and so
cannot be traced with tcpdump. However, there is an "unsupported" ndd
tunabl
karsten,
i have checked in support for the new DLT_PPP_WITH_DIRECTION (166) and
LINKTYPE_PPP_WITH_DIRECTION (166)
also i tweaked libpcap to treat it like PPP plus support of
the inbound/outbound tokens;
see below testresults ...
# ./tcpdump -dr ppp-dlt166.p
On Tue, Aug 17, 2004 at 12:35:33PM -0700, Guy Harris wrote:
> (How I want a drink, alcoholic of course, after the heavy lectures
> involving quantum mechanics.
>
> The above was inserted in the hopes that the duplicate message detector
> won't flag this as a duplicate; it was originally sent fro
> Hi !
>
> I understand there is no solution to sniffing
> for local traffic on Solaris since the
> kernel always used the loopback interface for
> that.
>
> I suggest to write a STREAMS module to sit on top
> of the loopback driver.
>
> Does anyone know if the loopback driver is a
> STREAMS dr
CVS log entries from 17.08.2004 (Tue) 09:04:05 - 18.08.2004 (Wed) 09:04:05 GMT
=
Summary by authors
=
Author: guy
File: libpcap/savefile.c; Revisions: 1.108, 1.92.2.12
==
Francisco Mesquita wrote:
> I understand that, I will send you the necessary changes to the file
> savefile.c as soon as I have the magic number (at least to have reading
> compatibility).
OK, I've assigned you 0xa1b234cd.
> When do you expect the new format will be available?
I don't think we have
13 matches
Mail list logo
