02-05-2006
The new version of ethereal (gnome frontend) has quite a lot of goodies added recently. If your RH is old, probably it may be worthwhile for you to compile-install it from sources.
I am not sure about the source dependency of it as it has been long since I last compiled it. In particular, probably the frontend already requires GTK2 although it used to support GTK1 some years earlier. If so, compilation may as well not work due to obsolete libraries.
Personally, I will do this with old servers that cannot support ethereal: tcpdump capture the packets on the command line, then transport the file written to another machine (say Windows or Linux installations with recent packages) that has an ethereal to view it.
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi everyone,
I'm planning on installing Linux Redhat on my system, what are the steps i need to take in order to install it side by side with Win'98 or Win'Me OS. (1 Reply)
Discussion started by: Chaos
1 Replies
2. Linux
I have a Red Hat upgrade disk. I installed it and it corrupted my entire hard drive! I had gotten the disks out of a Dummy's book at my local library. Trying to install 'Red Hat', has cost me $100.00 in damages. (The cool part is my friend gave me that $100.00 part) Ah...A 120gig Hard Drive. Just... (3 Replies)
Discussion started by: hdk_mkr
3 Replies
3. Gentoo
I intend to dual boot linux & Windows XP .
I've already installed windows. Its impossible to install Red Hat Linux in graphical mode the screen just goes blank shortly after booting with the linux cd
I succesfully installed in text mode. After booting the system I select Linux but the screen... (3 Replies)
Discussion started by: Msororaji
3 Replies
4. Linux
hello.
I would be greatfull if someone could tell me how will i see what dns server and gateway my red hat server uses.
I tryied to find out by typing ifconfig command but i got :
-bash: ifconfig: command not found , although man ifonconfig gives output with info about using that command.
Is... (3 Replies)
Discussion started by: tonijel
3 Replies
5. Linux
Hello, I have a problem to installing Red Hat enterprise edition on intel core 2 duo cpu e8200 2.66ghz. Problem is that when i enter or type linux text on boot prompt it hang on some PCI installation. Please give me sum example that how I install RED HAT 5 on Core 2 Duo. In both GUI and Text Base.... (0 Replies)
Discussion started by: Hassan_1992
0 Replies
6. Red Hat
I'm am working with a Red Hat Enterprise 3 server.
This is a dedicated server that is supposedly dedicated to one domain, but I have been tasked with trying to figure out if there are files on this system that are being accessed by other IP's.
Does anyone know if how I would go about finding... (0 Replies)
Discussion started by: chrisPlusPlus
0 Replies
7. Infrastructure Monitoring
Can someone please point me in the direction of where I can find out how to install cacti? there doesn't seem to be straightforward steps for it.
after downloading the tar.gz file from cacti.net, there's basically no instructions of what to do from that point on. any help will be appreciated. ... (1 Reply)
Discussion started by: SkySmart
1 Replies
8. UNIX for Dummies Questions & Answers
how to know if i use "Red Hat Enterprise Linux" or "Red Hat Desktop" ? (2 Replies)
Discussion started by: ahmedamer12
2 Replies
9. Solaris
I'm wanting to install Solaris 11.1 on a system that already has Windows and Red Hat and a boot system managed by GRUB.
From what I've read, the Solaris 11.1 install will recognize Windows fine and account for it with GRUB 2. But it doesn't mention any other OS.
It talks about installing... (2 Replies)
Discussion started by: JWH
2 Replies
LEARN ABOUT OPENSOLARIS
log2pcap
LOG2PCAP(1) User Commands LOG2PCAP(1)
NAME
log2pcap - Extract network traces from Samba log files
SYNOPSIS
log2pcap [-h] [-q] [logfile] [pcap_file]
DESCRIPTION
This tool is part of the samba(7) suite.
log2pcap reads in a samba log file and generates a pcap file (readable by most sniffers, such as ethereal or tcpdump) based on the packet
dumps in the log file.
The log file must have a log level of at least 5 to get the SMB header/parameters right, 10 to get the first 512 data bytes of the packet
and 50 to get the whole packet.
OPTIONS
-h
If this parameter is specified the output file will be a hex dump, in a format that is readable by the text2pcap utility.
-q
Be quiet. No warning messages about missing or incomplete data will be given.
logfile
Samba log file. log2pcap will try to read the log from stdin if the log file is not specified.
pcap_file
Name of the output file to write the pcap (or hexdump) data to. If this argument is not specified, output data will be written to
stdout.
-h|--help
Print a summary of command line options.
EXAMPLES
Extract all network traffic from all samba log files:
$ log2pcap < /var/log/* > trace.pcap
Convert to pcap using text2pcap:
$ log2pcap -h samba.log | text2pcap -T 139,139 - trace.pcap
VERSION
This man page is correct for version 3.0 of the Samba suite.
BUGS
Only SMB data is extracted from the samba logs, no LDAP, NetBIOS lookup or other data.
The generated TCP and IP headers don't contain a valid checksum.
SEE ALSO
text2pcap(1), ethereal(1)
AUTHOR
The original Samba software and related utilities were created by Andrew Tridgell. Samba is now developed by the Samba Team as an Open
Source project similar to the way the Linux kernel is developed.
This manpage was written by Jelmer Vernooij.
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+--------------------+----------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+--------------------+----------------------+
|Availability | SUNWsmbar, SUNWsmbau |
+--------------------+----------------------+
|Interface Stability | External |
+--------------------+----------------------+
NOTES
Source for Samba is available on http://opensolaris.org.
Samba(7) delivers the set of four SMF(5) services as can be seen from the following example:
$ svcs samba wins winbind swat
STATE STIME FMRI
disabled Apr_21 svc:/network/samba:default
disabled Apr_21 svc:/network/winbind:default
disabled Apr_21 svc:/network/wins:default
disabled Apr_21 svc:/network/swat:default
where the services are:
"samba"
runs the smbd daemon managing the CIFS sessions
"wins"
runs the nmbd daemon enabling the browsing (WINS)
"winbind"
runs the winbindd daemon making the domain idmap
"swat"
Samba Web Administration Tool is a service providing access to browser-based Samba administration interface and on-line documentation.
The service runs on software loopback network interface on port 901/tcp, i.e. opening "http://localhost:901/" in browser will access
the SWAT service on local machine.
Please note: SWAT uses HTTP Basic Authentication scheme where user name and passwords are sent over the network in clear text. In the SWAT
case the user name is root. Transferring such sensitive data is advisable only on the software loopback network interface or over secure
networks.
Samba 3.0 01/19/2009 LOG2PCAP(1)