LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Non-*NIX Forums > Programming
User Name
Password
Programming This forum is for all programming questions.
The question does not have to be directly related to Linux and any language is fair game.

Notices


Reply
  Search this Thread
Old 04-11-2007, 11:13 PM   #1
haxpor
Member
 
Registered: Dec 2006
Distribution: Ubuntu 9.10
Posts: 86

Rep: Reputation: 15
Want to know method wireshark or tcpdump to capture packet?


I want to know the method, the way that wireshark or tcpdump capturing the packet?

Is it listenning to some port and redirect all the incoming and outcoming to that port?
I also try to look in the source but this can save my time too.
 
Old 04-12-2007, 01:08 AM   #2
slzckboy
Member
 
Registered: May 2005
Location: uk - Reading
Distribution: slack 10.2 kde 3.4.2 kernel 2.6.15
Posts: 452

Rep: Reputation: 30
It just takes advantage of the way that ethernet works and listens to all traffic on the wire.
You interface would see all those signals anyway,its just that in normal operation mode if the packet is not for itself it would be ignored.


Do a google search on how packet sniffers work.
The IP protocol stack and or how ethernet works.
You may also want to look at the pcap C library.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to capture packets using wireshark exl75 Linux - General 24 07-21-2007 02:10 AM
tcpdump does not capture all packets logicalfuzz Linux - Networking 1 03-19-2007 12:47 PM
how do i read the data in the packet that i have captured after packet capture? gajaykrishnan Programming 23 04-19-2006 05:09 AM
not capture payload with tcpdump? hedpe Linux - Networking 6 02-07-2006 02:23 PM
determine tcpdump packet loss Tiago Sousa Linux - Newbie 1 12-15-2005 11:37 AM

LinuxQuestions.org > Forums > Non-*NIX Forums > Programming

All times are GMT -5. The time now is 01:36 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration