I haven't been able to find a way to do it for a specific amount of time yet,
but you could just add the -c option, you will probably get approximately 1000 packets per minute or so. If you think it might be more, increase the count.
I'm not the best shell scripter, so this might be a little dirty, but here is how I would do it with bash shell:
Hello! It is my first post in this forum :).
I`m facing a strange issue. I am using a Solaris 8 as OS, and using the ipnat (ipf) to NAT an incoming port to another, as following:
Host SUN with Solaris 8/NAT WEB Page
(A.B.C.D:80) ---> |A.B.C.D:80 ->... (0 Replies)
Hi.
I'm trying to capture traffic with the snoop command using the net expression but I fail when a I've to specify a subnet
ex: 10.201.64/18
Did you know the correct syntax?
I've tried with
snoop -ta -x0 net 10.201.64.0 255.255.192.0
but doesn't match.
Thnx (4 Replies)
Hi,
I want to write a script that checks an interface with the snoop command, if there is no traffic in 10 minutes on port 123 from the ip add 10.*.*.* it should send a e-mail.but i don't know how to start writing this script does anybody have an idea or an sample script that i can modifi.
... (2 Replies)
Hi all,
I want to monitoring my interface every 6 hours where i want to run snoop command to capture all packet through the interface, so i want running snoop then snoop will run for 5 minutes after that snoop stop then will start again after 6 hours than run for 5 minutes again.
thereis any... (9 Replies)
Hi,
Can anyone please tell me a ftp site where I can download the solaris snoop package? I need to download the package so I can use the command in a Linux environment instead of using tcpdump. Need practice with snoop.
Thanks for your help. (3 Replies)
Hi Everyone :),
Need your advice as I'm new to UNIX scripting.. I'm trying to write a script to capture snoop output for 5 minutes for every hour for 24 hours. To stop snoop, I need to press Control-C to break it. This is what I got so far, but now I'm stuck! :confused:
The script:
# cat... (2 Replies)
Hi
I want to write a script for snoop which can do snoop for 30 min and then process should be killed automatically
I am using below codes
#!/usr/bin/ksh
snoop -d igb0 -o /opt/temp/abc.pcap
sleep 1500
kill -9 `ps -ef|grep -i snoop |grep -v grep|awk '{print $2}'`
But process is not... (3 Replies)
Dears,
I am trying to run a bash script to take a snoop on an interface with a certain port for like 5 minute and once the snoop is finished I need to parse the snoop file on unix/solaris without using WIRESHARK or ETHERAL.
the snoop that I will capture will be for DIAMETER Protocol and... (4 Replies)
I have reviewed many examples on-line about running another process (either PERL or shell command or a program), but do not find any usefull for my needs way. (Reviewed and not useful the system(), 'back ticks', exec() and open())
I would like to run another PERL-script from first one, not... (1 Reply)
Discussion started by: alex_5161
1 Replies
LEARN ABOUT DEBIAN
snooper
SNOOPER(1) BSD General Commands Manual SNOOPER(1)NAME
snooper -- a utility for capturing data flowing between serial devices
SYNOPSIS
snooper [-h]
snooper [-b baudrate] [-t] [-u] [-x] [-n] port0 port1
DESCRIPTION
snooper passes data transparently between two serial (RS232C) devices, capturing and logging the data and occasional comments you want to
insert into the logs.
It is useful for debugging or analyzing the communications protocol between two devices that would normally be connected directly to each
other, e.g. a digital camera and a personal computer. By sitting in the middle (after you connect the two devices to serial ports on your
Linux machine) snooper is able to capture data traveling in either direction while also passing it unmodified to the other device.
It is also possible to operate with a single serial device, using your console and keyboard as the second device.
OPTIONS -b baudrate
Specify baudrate to use. Default baudrate is 9600.
-t Include current time (in microseconds) with each write to the textual log file. See L under KEYBOARD COMMANDS, below.
-u Do not perform serial device locking. (This option is discouraged, and should never be necessary on a properly-configured Debian
system.)
-x Hex display only. (Even printable characters will be displayed in hex.)
-n Do not forward traffic between the two ports; useful when you have a splitter cable.
-h Help; presents a brief synopsis of the command line options.
KEYBOARD COMMANDS
snooper has a set of commands that act similar to those of vi.
Note that the characters transmitted into the serial ports will not be forwarded while snooper is in command parameter input mode. You
should therefore set the log file and so forth while the serial line has no activity.
L Switch textual log file. You'll be asked to answer the filename of the log file.
B Switch binary log file. You'll asked to answer which device to log, and the log file name. Please note that the binary log will
contain the input from the perspective of snooper. Therefore, if you would like to make a log of input of line 0 (thus the output
from device connected to line 0), you shold specify line 0. You should use a file that is local, or on a virtual disk, so that no
characters will be lost.
m add a memo line to the text log file. The memo line will contain a timestamp and the text you provide.
Q Quit.
c Reset the counter.
b Change the baudrate.
C Make the console act as one of the serial lines. ESC Go back to command mode. ^V Quote the next char (so that you can send ESC, for
example). ^X input a byte by its 2-character hexadecimal value (so that you can send any character you like). By tapping any other
key, that character will be sent to the line.
^L Repaint the screen.
An unrecognized command character will present a brief list of the valid command characters.
EXAMPLE
snooper /dev/ttyS0 /dev/ttyS1
AUTHOR
Jun-ichiro Itoh <itojun@itojun.org>
This man page was written by David Coe <davidc@debian.org> for the Debian project, and may be used by others under the terms of the GNU Gen-
eral Purpose License, version 2 or later.
Debian Januray 20, 2002 Debian