Daniel Lawson wrote:
> >>option 2:
> >>You want to filter out specific traffic before storing a capture to disk.
> >
> >option 2 is closer to what I want, but it's not what I want.
> >I want to remove specific traffic WHILE storing a capture to disk.
>
> Ok, that makes more sense then. I also gues
Daniel Lawson wrote:
> >The problem with libpcap format is that I can't read the file in
> >realtime, nor delete packets.
>
> What do you mean by 'delete packets'. Are you wanting to actually remove
> packets off the wire, or just from an offline storage of your capture?
I want to remove packets f
Guy Harris wrote:
> MAURICIOMANENTS wrote:
> >I'd like to store packets in a database format so I can see packets
> >using ethereal (with the needed changes to support database reading)
>
> If you're talking about reading it using Ethereal, what you'll have
I'd like to store packets in a database format so I can see packets
using ethereal (with the needed changes to support database reading)
or remove not needed packets while capturing.
Does anyone know if it's possible to store packets using tcpdump on a
database (either SQL, Berkeley DB, or whateve
