hi all, What is the minimum capture length of an ethernet packet i need to do the most important analysis of a packet.
ethernet - 14 bytes + ip - 20 (upto 60) tcp - 20 these would contain all the fileds required for doing the filtering similar to tcpdump. does tcpdump do filtering on transport layer payload ?? or appl data ? so if the capture length is 54 (or 94) we can do all the packet analysis ? thanks ashley - This is the TCPDUMP workers list. It is archived at http://www.tcpdump.org/lists/workers/index.html To unsubscribe use mailto:[EMAIL PROTECTED]?body=unsubscribe
