> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Behalf Of Darren Reed
> Sent: sabato 7 agosto 2004 13.19
> To: [EMAIL PROTECTED]
> Subject: Re: [tcpdump-workers] advice for heavy traffic capturing
>
>
> In some email I received from Motonori Shindo, sie wrote:
>
With some investigation, I found a solution, so there may need to
be a libpcap code modification for mac os x? In order to get
around my problem I had to call:
ioctl(pcap_fileno(fd, BIOCIMMEDIATE, &v)
To get a BIOCIMMEDIATE definition, I needed the real net/bpf.h, and
because that uses _IOW, I
Gentle people,
Apologies if this a known problem.
On mac os x 10.3.4, using libpcap-0.8.3, opening pcap with
pcap_open_live(dev, 96, 1, 1000, errbuf) and reading packets with
pcap_loop (pd, 1, callback, user), packets are queued until some
magic number (looks to be 200) of packets is reache
In some email I received from Motonori Shindo, sie wrote:
> Hi,
>
> I'm involved in a project to do some network traffic analysis. One of
> the goals of this project is to identify an equipment that is
> supposedly dropping packets. My idea to achieve this goal is to
> capture traffic by tcpdump a
http://www.tcpdump.org/daily/tcpdump-current.tar.gz
of a few minutes ago contains files from 22 July. i.e. the direcory
prefix is "tcpdump-2004.07.22".
Isn't the current file built by a cron job irrespective of any files having
been changed or not? Or has crond gone down or taken summer-holida
