FatRiSha wrote:
So,.. Linux kernel 2.2 and above already used kernel filtering, right?
They already supported kernel filtering.
and there's no BPF in Linux at all, right?
There's no BPF in the sense of a raw packet capture and sending metod
that behaves the way BPF behaves on BSD.
There *is*, how
On Thu, 24 Mar 2005 02:38:51 -0800
Guy Harris <[EMAIL PROTECTED]> wrote:
Libpcap uses BPF on the BSDs and, by default on AIX. It
uses PF_PACKET sockets on Linux (or, on 2.0[.x] kernels,
SOCK_PACKET sockets), and other mechanisms on other OSes.
Libpcap has its own BPF filtering mechanism, which
FatRiSha wrote:
I would like to know the correlation between 'libpcap', 'linux' & bpf.
Linux is, depending on whom you ask, either an operating system kernel
or an operating system.
BPF is, depending on whom you ask, either
1) a mechanism, provided in various BSDs and in AIX, for capturing and
