Would it make sense to have tcpdump default to the maximum snapshot length, rather than 68 (without IPv6 support) or 96 (with IPv6 support)?
- This is the tcpdump-workers list. Visit https://cod.sandelman.ca/ to unsubscribe.
The "tcp" in "tcpdump" is a bit old - people use it for doing more
than just looking at TCP headers these days - and it sounds as if the
problem Torsten Krah had tring to decrypt ipsec traffic was due to the
packets being cut short by a snapshot length.
- [tcpdump-workers] Should the default snapshot leng... Guy Harris
- Re: [tcpdump-workers] Should the default snap... Aaron Turner
- Re: [tcpdump-workers] Should the default ... Eloy Paris
- Re: [tcpdump-workers] Should the default snap... Michael Richardson
- Re: [tcpdump-workers] Should the default ... Ken Bantoft
- Re: [tcpdump-workers] Should the defa... Francois-Xavier Le Bail
- Re: [tcpdump-workers] Should the default snap... Guy Harris
- Re: [tcpdump-workers] Should the default ... Arien Vijn
- Re: [tcpdump-workers] Should the defa... Eloy Paris
- Re: [tcpdump-workers] Should the ... Arien Vijn
- Re: [tcpdump-workers] Should... Francois-Xavier Le Bail
