tcpdump mailing list archives
Re: LIBPCAP: ULOG iptables capturing
From: Guy Harris <guy () alum mit edu>
Date: Mon, 8 Sep 2003 21:14:38 -0700
On Sat, Sep 06, 2003 at 04:06:10PM +0200, Johan Verrept wrote:
I have been working on a ULOG support (netlink socket) support in
libpcap for linux. Most of the capturing code is fairly easy and I have
tried to blend it in the current stuff without too many changes.
There is one thing I would like some suggestions about. What packet
header should I generate? should I create something like those 'cooked'
packets?
That depends on the information supplied by the netlink stuff. I presume you get raw network-layer (IP, IPv6, IPX, etc.) packet data from it. It probably also supplies an indication of the network-layer protocol, and perhaps other information. What information does it supply? - This is the TCPDUMP workers list. It is archived at http://www.tcpdump.org/lists/workers/index.html To unsubscribe use mailto:tcpdump-workers-request () tcpdump org?body=unsubscribe
Current thread:
- LIBPCAP: ULOG iptables capturing Johan Verrept (Sep 06)
- Re: LIBPCAP: ULOG iptables capturing Guy Harris (Sep 08)
- Re: LIBPCAP: ULOG iptables capturing Johan Verrept (Sep 10)
- Re: LIBPCAP: ULOG iptables capturing Guy Harris (Sep 10)
- Re: LIBPCAP: ULOG iptables capturing Johan Verrept (Sep 11)
- Re: LIBPCAP: ULOG iptables capturing Guy Harris (Sep 11)
- Re: LIBPCAP: ULOG iptables capturing Johan Verrept (Sep 12)
- Re: LIBPCAP: ULOG iptables capturing Guy Harris (Sep 12)
- Re: LIBPCAP: ULOG iptables capturing Johan Verrept (Sep 10)
- Re: LIBPCAP: ULOG iptables capturing Guy Harris (Sep 08)