1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Tcpdump | Jan. 17, 2010

Discussion in '$1 Daily Competition' started by pankaj.sea, Jan 17, 2010.

  1. pankaj.sea

    pankaj.sea New Member

    Joined:
    Apr 6, 2009
    Messages:
    461
    Likes Received:
    13
    Trophy Points:
    0
    Occupation:
    Web Developer
    Location:
    Kolkata
    Home Page:
    Tcpdump does exactly what its name implies: it dumps the contents of
    the TCP/IP packets
    passing through an interface to an output device, usually the screen
    or to a file.
    In order for Tcpdump to work, it must be able to put network card into what is
    called ___________ mode. This means that the
    network card will intercept all traffic on the Ethernet wire, not just
    that addressed to it. Each operating system processes
    traffic from the Ethernet card in a different fashion. To provide a common
    reference for programmers, a library called _________ was
    created. On UNIX this is
    known as _________ and on Windows as __________. These low-level drivers can modify the way the card would
    normally handle traffic. They must be installed before you can install
    Tcpdump.If Tcpdump is already on the system, then already there exist
    this driver installed. If not we have to install it
    :hanged:
     
  2. shabbir

    shabbir Administrator Staff Member

    Joined:
    Jul 12, 2004
    Messages:
    15,283
    Likes Received:
    364
    Trophy Points:
    83
  3. sameer_havakajoka

    sameer_havakajoka New Member

    Joined:
    Sep 14, 2009
    Messages:
    271
    Likes Received:
    2
    Trophy Points:
    0
    Occupation:
    Sleeping
    Location:
    Hava Ke Paro Me
    In order for Tcpdump to work, it must be able to put your network card into what is called promiscuous mode. This means that the network card will intercept all traffic on the Ethernet wire, not just that addressed to it. Each operating system processes traffic from the Ethernet card in a different fashion. To provide a common reference for programmers, a library called pcap was created. On UNIX this is known as libpcap and on Windows as WinPcap. These low-level drivers can modify the way the card would normally handle traffic. They must be installed before you can install Tcpdump.
     
  4. pankaj.sea

    pankaj.sea New Member

    Joined:
    Apr 6, 2009
    Messages:
    461
    Likes Received:
    13
    Trophy Points:
    0
    Occupation:
    Web Developer
    Location:
    Kolkata
    Home Page:
    Wow!
    You're Correct!
    :sosp::sosp::sosp:
     
  5. sameer_havakajoka

    sameer_havakajoka New Member

    Joined:
    Sep 14, 2009
    Messages:
    271
    Likes Received:
    2
    Trophy Points:
    0
    Occupation:
    Sleeping
    Location:
    Hava Ke Paro Me
    thanks pankaj.sea
     

Share This Page