Re: [tcpdump-workers] Welcome to the tcpdump-workers list!

Ramsurrun Visham wrote: What I want to do is that after libpcap prints the stats about each packet it captures, I want the whole ethernet frame to be sent to the IPTables firewall I've set up. It as if there was no libpcap there. Does the iptables mechanism know, or care, whether somebody happens t

Re: [tcpdump-workers] Welcome to the tcpdump-workers list!

Many thx for the prompt reply Joshua. What I want to do is that after libpcap prints the stats about each packet it captures, I want the whole ethernet frame to be sent to the IPTables firewall I've set up. It as if there was no libpcap there. Normally what happens when you have a firewall in p

Re: [tcpdump-workers] PCAP-NG suggestion

Gianluca Varenni wrote: - Original Message - From: "Felipe Kellermann" <[EMAIL PROTECTED]> To: Sent: Wednesday, February 09, 2005 2:08 AM Subject: Re: [tcpdump-workers] PCAP-NG suggestion On Sun, 13 Feb 2005 2:28pm -0800, Loris Degioanni wrote: I think a block with data that starts at an

Re: [tcpdump-workers] link within http://winpcap.polito.it/misc/faq.htm#Q-16 is incorrect (stale) !

Hi Ben. I know the issue. The author of that page has rebuilt the web site (up to a week or so ago it was "under construction"), the new page seems to be http://www.micro-logix.com/WinPcap/Supported.asp *but* it says "under construction". Unfortunately, none of us (winpcap team) has stored that p

Re: [tcpdump-workers] PCAP-NG suggestion

- Original Message - From: "Felipe Kellermann" <[EMAIL PROTECTED]> To: "Tcpdump Workers Mailing List" Sent: Wednesday, February 09, 2005 2:04 AM Subject: Re: [tcpdump-workers] PCAP-NG suggestion On Sun, 13 Feb 2005 12:41pm +0100, Gianluca Varenni wrote: I haven't yet thought if it woul

Re: [tcpdump-workers] PCAP-NG suggestion

- Original Message - From: "Felipe Kellermann" <[EMAIL PROTECTED]> To: Sent: Wednesday, February 09, 2005 2:08 AM Subject: Re: [tcpdump-workers] PCAP-NG suggestion On Sun, 13 Feb 2005 2:28pm -0800, Loris Degioanni wrote: I think a block with data that starts at an arbitrary position of

Re: [tcpdump-workers] find file name

Harry Putnam wrote: Well that comes close but still fails to show the extension: tcpdump -v -A host somehost Shows something like this: [...] \.GET /demo/learnpscs/01.03_cust I happen to know that is 01.03_cust.mov, but how can I learn that from tcpdump? By capturing with the "-s" flag as w

Re: [tcpdump-workers] Welcome to the tcpdump-workers list!

On Fri, Feb 18, 2005 at 03:28:50PM +0400, Ramsurrun Visham wrote: | Hi, | | 1) wanted to ask how to make tcpdump show mac addresses? use the e flag [tcpdump -e ] for displaying link-layer information; | 2) how can I pass the packet that has been captured by tcpdump to iptables? | not sure i