I would also add that there exists a tool called ssldump (also operating
on top of libpcap) that is indeed able (under certain conditions) to
capture and decode SSL traffic.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: Tuesday, J
Greetings, everyone!
We are trying to capture stuff using a relatively simple filter (on
Linux, using Phil Wood's PCAP with ssldump on top of it). What we want
is basically to capture the traffic to and from a specific port of a
specific host (say, 10.0.0.1:80). So far we did it using the filter
PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dmitry
Rubinstein
Sent: Monday, January 08, 2007 11:56 AM
To: tcpdump-workers@lists.tcpdump.org
Subject: [tcpdump-workers] mmap-ed tcpdump and gigabit ethernet
Greetings, all!
I would like to have an efficient capturing solution for a gigabit
Greetings, all!
I would like to have an efficient capturing solution for a gigabit
network. It seems as if Phil Wood's libpcap should do the work. However,
I am not sure as for its support for the jumbo frames. When in MMAP
mode, this version of tcpdump doesn't seem to cope with -s 0 or -s N for
