Hi, I'm wondering whats the difference between the pcap_packet and the payload? I have seen that you can extract the payload like this:
payload = (u_char *)(packet + SIZE_ETHERNET + size_ip + size_tcp); Contains the packet_data some more information? Regards, alokat - This is the tcpdump-workers list. Visit https://cod.sandelman.ca/ to unsubscribe.
