11-27-2009
Quote:
Originally Posted by
Pouchie1
jlliagre's idea was great! I tried it. It didn't work at first . It gave me an error stating wrong time period for sleep.
That's weird. That syntax simply set a default value (60 seconds) if no second parameter is supplied.
Quote:
But, I am wondering how sure I can be that this kill $! will only kill the snoop process that I am running and not any other process that is running.
It can't by design. $! is the pid of the last background process.
Quote:
I am wondering if it will be safer to to have script return the process ID for the snoop that I am running and then kill that process only.
That would have no advantage.
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
is there a snoop equivalent in other flavors of unix? HPUX, SCO or linux.
TIA
Peter (2 Replies)
Discussion started by: pbonilla
2 Replies
2. Solaris
Hello! It is my first post in this forum :).
I`m facing a strange issue. I am using a Solaris 8 as OS, and using the ipnat (ipf) to NAT an incoming port to another, as following:
Host SUN with Solaris 8/NAT WEB Page
(A.B.C.D:80) ---> |A.B.C.D:80 ->... (0 Replies)
Discussion started by: mf_lattanzi
0 Replies
3. Solaris
Hi.
I'm trying to capture traffic with the snoop command using the net expression but I fail when a I've to specify a subnet
ex: 10.201.64/18
Did you know the correct syntax?
I've tried with
snoop -ta -x0 net 10.201.64.0 255.255.192.0
but doesn't match.
Thnx (4 Replies)
Discussion started by: kurtolo
4 Replies
4. Shell Programming and Scripting
Hi,
I want to write a script that checks an interface with the snoop command, if there is no traffic in 10 minutes on port 123 from the ip add 10.*.*.* it should send a e-mail.but i don't know how to start writing this script does anybody have an idea or an sample script that i can modifi.
... (2 Replies)
Discussion started by: tafil
2 Replies
5. Shell Programming and Scripting
Hi all,
I want to monitoring my interface every 6 hours where i want to run snoop command to capture all packet through the interface, so i want running snoop then snoop will run for 5 minutes after that snoop stop then will start again after 6 hours than run for 5 minutes again.
thereis any... (9 Replies)
Discussion started by: tindasz
9 Replies
6. UNIX for Advanced & Expert Users
Hi,
Can anyone please tell me a ftp site where I can download the solaris snoop package? I need to download the package so I can use the command in a Linux environment instead of using tcpdump. Need practice with snoop.
Thanks for your help. (3 Replies)
Discussion started by: Pouchie1
3 Replies
7. Shell Programming and Scripting
Hi Everyone :),
Need your advice as I'm new to UNIX scripting.. I'm trying to write a script to capture snoop output for 5 minutes for every hour for 24 hours. To stop snoop, I need to press Control-C to break it. This is what I got so far, but now I'm stuck! :confused:
The script:
# cat... (2 Replies)
Discussion started by: faraaris
2 Replies
8. Shell Programming and Scripting
Hi
I want to write a script for snoop which can do snoop for 30 min and then process should be killed automatically
I am using below codes
#!/usr/bin/ksh
snoop -d igb0 -o /opt/temp/abc.pcap
sleep 1500
kill -9 `ps -ef|grep -i snoop |grep -v grep|awk '{print $2}'`
But process is not... (3 Replies)
Discussion started by: anish19
3 Replies
9. Solaris
Dears,
I am trying to run a bash script to take a snoop on an interface with a certain port for like 5 minute and once the snoop is finished I need to parse the snoop file on unix/solaris without using WIRESHARK or ETHERAL.
the snoop that I will capture will be for DIAMETER Protocol and... (4 Replies)
Discussion started by: jojo123
4 Replies
10. Programming
I have reviewed many examples on-line about running another process (either PERL or shell command or a program), but do not find any usefull for my needs way. (Reviewed and not useful the system(), 'back ticks', exec() and open())
I would like to run another PERL-script from first one, not... (1 Reply)
Discussion started by: alex_5161
1 Replies
LEARN ABOUT NETBSD
pcap_setdirection
PCAP_SETDIRECTION(3) Library Functions Manual PCAP_SETDIRECTION(3)
NAME
pcap_setdirection - set the direction for which packets will be captured
SYNOPSIS
#include <pcap/pcap.h>
int pcap_setdirection(pcap_t *p, pcap_direction_t d);
DESCRIPTION
pcap_setdirection() is used to specify a direction that packets will be captured. d is one of the constants PCAP_D_IN, PCAP_D_OUT or
PCAP_D_INOUT. PCAP_D_IN will only capture packets received by the device, PCAP_D_OUT will only capture packets sent by the device and
PCAP_D_INOUT will capture packets received by or sent by the device. PCAP_D_INOUT is the default setting if this function is not called.
pcap_setdirection() isn't necessarily fully supported on all platforms; some platforms might return an error for all values, and some other
platforms might not support PCAP_D_OUT.
This operation is not supported if a ``savefile'' is being read.
RETURN VALUE
pcap_setdirection() returns 0 on success and -1 on failure. If -1 is returned, pcap_geterr() or pcap_perror() may be called with p as an
argument to fetch or display the error text.
SEE ALSO
pcap(3), pcap_geterr(3)
5 April 2008 PCAP_SETDIRECTION(3)