Guy Harris wrote:
On Oct 14, 2008, at 9:30 AM, Max Laier wrote:
> Depends on the platform you are on. On FreeBSD all you need is read
> write
> permission to the /dev/bpf* devices.
Also true in NetBSD, OpenBSD, DragonFly BSD, Mac OS X, and, I think,
AIX. (And, at least with some versions
You can do this using netgraph. I set this up a few weeks ago for dealing with
ethernet taps that break out a link into two cables.
I can not remember what the netgraph primitives were off the top of my head,
but if you ask me off-list I can describe the setup for you.
Cheers,
-Jesse
- O
Michael Bernstein wrote:
One thing I like is when engineers argue over who is better. I have obviously lost this argument *here*, so I should maybe leave the list?
Please do.
-Jesse
-
This is the tcpdump-workers list.
Visit https://cod.sandelman.ca/ to unsubscribe.
Michael Richardson wrote:
Only... -P is used somewhere else, in another patch, I think.
We gotta get 4.0 out, with long options...
Fair enough. But the question is less "what do we call it?" and more
"does this functionality get into tcpdump?".
Cheers,
-Jesse
---
On Apr 2, 2008, at 11:01 AM, Jesse Kempf wrote:
On Apr 2, 2008, at 10:08 AM, Milosz Marian Hulboj wrote:
On Wednesday 02 April 2008, Jesse Kempf wrote:
Hi,
So tcpdump tends to jam up the terminal a bit when you try to
dump on a
saturated gigabit link. I've added a -P option to tcpdump
On Apr 2, 2008, at 10:08 AM, Milosz Marian Hulboj wrote:
On Wednesday 02 April 2008, Jesse Kempf wrote:
Hi,
So tcpdump tends to jam up the terminal a bit when you try to dump
on a
saturated gigabit link. I've added a -P option to tcpdump that
lets you
specify a probability for tcpdu
On Apr 2, 2008, at 6:41 AM, Bruce M Simpson wrote:
Jesse Kempf wrote:
Hi,
So tcpdump tends to jam up the terminal a bit when you try to dump
on a saturated gigabit link. I've added a -P option to tcpdump
that lets you specify a probability for tcpdump to print each
packet. It
Rick Jones wrote:
Jesse Kempf wrote:
Hi,
So tcpdump tends to jam up the terminal a bit when you try to dump on
a saturated gigabit link. I've added a -P option to tcpdump that lets
you specify a probability for tcpdump to print each packet. It uses
drand48() to figure out whether each p
ously this isn't the same thing as saying "print every Nth packet"
since this is a Bernoulli process and the expected value of the number
of printed packets is different.
Also, I hacked up the print_packet function, so this only works for
parse and print mode.
