On Tue, Aug 17, 2004 at 03:16:27AM +0100, neha agrawal wrote: | hello! | i am capturing packets using tcpdump. i want | to read the packet header and all.. as tcpdump reads | and put the information in data base.i dont want to | read from output generated by tcpdump.. but read | information of packets as and when tcpdump reads.. and | put them in database.. can u let me know which source | files i need to modify. is there some document | describing flow of the source code of tcpdump.. | thanks | neha
neha, as a good start i would encourage you to read through the ethernet [print-ethernet.c] ip [print-ip.c] and ppp [print-ppp.c] printers; it should not be too difficult to hook in a database dumper; /hannes - This is the tcpdump-workers list. Visit https://lists.sandelman.ca/ to unsubscribe.
