Most commercial NICs only deliver well formed Ethernet packets (valid
size, correct FCS) to the operating system, and also generally strip out
Ethernet control frames such as 'pause' indications.
Because of this Libpcap would not have any data to deliver to the
capturing application.
You may have
Hi,
after Guy's last email where he states:
"Tcpdump supports capturing *all* network traffic;"
I feel compelled to again ask if anyone can offer any suggestions on how I
can achieve my goal of capturing the data I'm seeing on my ethernet
segment... To what I wrote earlier I'd also add that th
Excellent information. Thanks, Guy!
tl
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Guy Harris
Sent: Tuesday, January 23, 2007 12:59 PM
To: tcpdump-workers@lists.tcpdump.org
Subject: Re: [tcpdump-workers] Capture/decode SSL
[EMAIL PROTECTED] wrote:
[EMAIL PROTECTED] wrote:
I need to capture and decode SSL traffic. Does tcpdump support this?
Tcpdump supports capturing *all* network traffic; if it captures and
saves packets to a file, the packet contents are just a big bucket of
bytes. Note that its default "snapshot length" is 68 byte
