the current problem i am facing is
i have already posted it here and i have got a reply also
{
I am currently working on a project related to packet sniffing which has been implemented using the concept of raw sockets. I am using C language.
I am able to decode the following details from the packets received from a local network,like:
source and Destination Mac Address
source and Destination IP Address
source and Destination port no
But I am having trouble in decoding the domain name when an user in the local network is logging onto internet.For eg. if a user in the local network is trying to log on to web using his browser say if he has logged on to
www.google.com then from the packet I need to get the following details
source Mac Address from which user had logged on
source IP Address from which user had logged on
domain name
}
but still my doubt is when the browser resolves the Domain name to Ip using dns .The browser have to send out a packet right.I want to know which header would contain the detail about domain and Jon Hannah who had replied to that post had told that the packet send out will be a udp packet.If the domain have been cached on the machine how is it resolved.
For getting to the bottom of this problem i thought about doing kernal recompiling for mozilla . I dont is it stupid thing to ask "kernal recompiling for mozilla" & is such a thing possible so pls do help
and i havent got such vast experince in linux c. I learned it all from net regarding socket programming ,raw sockets etc.