tcpdump
tcpdump copied to clipboard
the-tcpdump-group
the TCPdump network dissector
For an unsupported DLT the hex dump output is implicit: ``` $ ./tcpdump -n -r tests/unsupported-link-type-160.pcap reading from file tests/unsupported-link-type-160.pcap, link-type 160, snapshot length 102400 01:00:00.000000 UNSUPPORTED 0x0000: 490c 6209...
This PR adds a new --utf8 option to enable UTF-8 character support. When UTF-8 support is enabled, tcpdump will detect and display UTF-8 characters in the payload as-is when using...
Ubuntu, Fedora and other distro create the tcpdump user/group pair by default, to be used for unprivileged access to tcpdump: https://git.launchpad.net/ubuntu/+source/tcpdump/tree/debian/tcpdump.postinst https://src.fedoraproject.org/rpms/tcpdump/blob/rawhide/f/tcpdump-sysusers.conf Add a sysusers.d config file and install it....
Limit the access of the `slow_print` function to the subtype field, which is the only field the slow protocol defines. This means moving the version stuff for LACP and Marker...
Currently, BIG TCP IPv6 inserts a hop-by-hop extension header with a jumbo payload option to reflect the real length of the packet bigger than 65535 bytes. New kernels will drop...
Hi, is this tcpdump behavior a bug where interface index 9 fails with `tcpdump -i 000000000000009` (14 zeros) but succeeds with `tcpdump -i 0000000000000009` (15 zeros), despite both referring to...
Hello, I am observing captured packets using tcpdump and I would like to clarify something regarding timestamps. Is it normal that the capture timestamp differs from the actual packet transmission...
This is a 1-bit flag in the Prefix Information RA option defined by [RFC9762](https://tools.ietf.org/html/rfc9762). If a compliant RA-accepting node receives a PIO with the P flag set, it is expected...
These changes fix undefined behavior in the snmp decoder when the underlying representation is of a value larger than 32-bits. The decoder fundamentally doesn't support these values, and the original...
Whilst testing various things on an old Pentium 3 PC, I noticed that Clang build of tcpdump cannot be tested. The OS is Debian 6.0.10. The kernel is supported, at...