[tcpdump-workers] [Off-Topic] Announcing "Ostinato" - packet generator and analyzer

2010-04-13 Thread Srivats P
Ostinato Ostinato is an open source, cross platform packet/traffic generator and analyzer with a friendly GUI. A stated goal for the project is to be "Wireshark in Reverse" and thus become complementary to Wireshark Features * Runs on both Linux and Windows (W

Re: [tcpdump-workers] Request for new DLT and LINKTYPE value

2010-04-13 Thread Guy Harris
On Apr 13, 2010, at 2:34 PM, Edgar, Thomas wrote: > I am open to the possibility of going forward with that approach. Just to > clarify, does this work by the user preselecting the framing mechanism before > the capture is started? Yes. > For instance, I would have to know that DNP3 is being

Re: [tcpdump-workers] Request for new DLT and LINKTYPE value

2010-04-13 Thread Edgar, Thomas
On Apr 13, 2010, at 12:02 PM, Guy Harris wrote: >Then perhaps the right thing to do is to have *multiple* DLT_/LINKTYPE_ >values, one for each protocol, and use the particular protocol's framing >mechanism when capturing a particular protocol. libpcap has an API to select >link-layer type hea

Re: [tcpdump-workers] Request for new DLT and LINKTYPE value

2010-04-13 Thread Guy Harris
On Apr 13, 2010, at 8:53 AM, Edgar, Thomas wrote: > We are targeting framed protocols over serial, such as the serial versions of > DNP3 and Modbus, Then perhaps the right thing to do is to have *multiple* DLT_/LINKTYPE_ values, one for each protocol, and use the particular protocol's framing

Re: [tcpdump-workers] Request for new DLT and LINKTYPE value

2010-04-13 Thread Fulko Hew
On Tue, Apr 13, 2010 at 11:53 AM, Edgar, Thomas wrote: > On Apr 12, 2010, at 4:26 PM, Guy Harris wrote: > >> I am posting to request a value for DLT_SERIAL and LINKTYPE_SERIAL for > use with libpcap. I am >working on a project to update libpcap and > Wireshark to capture and parse RS232 and RS48

Re: [tcpdump-workers] Request for new DLT and LINKTYPE value

2010-04-13 Thread Edgar, Thomas
On Apr 12, 2010, at 4:26 PM, Guy Harris wrote: >> I am posting to request a value for DLT_SERIAL and LINKTYPE_SERIAL for use >> with libpcap. I am >working on a project to update libpcap and Wireshark >> to capture and parse RS232 and RS485 traffic >(written such that it could >> handle a wid

Re: [tcpdump-workers] Display of packet direction and interface

2010-04-13 Thread Paul LeoNerd Evans
On Mon, Apr 12, 2010 at 03:57:22PM -0700, Darren Reed wrote: > the current libpcap record format has no way to record this information. > > you might like to play around with pcap-ng. OK. Then lets define a new record format.. Or use something existing; pcap-ng looks at first glance like it has i