Re: tcpdump as an inferior Perl process

Michael C. Toren on 16 Oct 2003 20:52:08 -0400

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: tcpdump as an inferior Perl process

From: "Michael C. Toren" <mct@toren.net>

To: phl@lists.pm.org

Subject: Re: tcpdump as an inferior Perl process

Date: Thu, 16 Oct 2003 20:51:58 -0400

Reply-to: phl@lists.pm.org

Sender: owner-phl@lists.pm.org

On Thu, Oct 16, 2003 at 08:03:53PM -0400, David Steuber wrote: > Can anyone recomend any Perl modules for parsing packets emited by > tcpdump with its -w param? I wish to be able to inspect the payload > data as well as packet header data (at both ip and ether levels). Have you looked into the NetPacket::IP modules? Alternatively, you can try processing the text output of "tcpdump -Xr", or if you're using linux, write an iptables QUEUE target handler with IPTables::IPv4::IPQueue to record packets. -mct - **Majordomo list services provided by PANIX <URL:http://www.panix.com>** **To Unsubscribe, send "unsubscribe phl" to majordomo@lists.pm.org**

Follow-Ups:

Re: tcpdump as an inferior Perl process
From: David Steuber <david.steuber@verizon.net>

References:

tcpdump as an inferior Perl process
From: David Steuber <david.steuber@verizon.net>

Prev by Date: Re: tcpdump as an inferior Perl process

Next by Date: Re: tcpdump as an inferior Perl process

Previous by thread: Re: tcpdump as an inferior Perl process

Next by thread: Re: tcpdump as an inferior Perl process

Index(es):

Date

Thread