SHMIF_DUMPBUS(1) BSD General Commands Manual SHMIF_DUMPBUS(1)NAME
shmif_dumpbus -- examine shmif bus contents
SYNOPSIS
shmif_dumpbus [-h] [-p pcapfile] busfile
DESCRIPTION
The shmif_dumpbus utility examines the bus of an shmif(4) Ethernet interface. The most useful feature is converting the bus to the pcap(3)
file format for later examination. shmif_dumpbus itself is limited to displaying only very basic information about each frame.
shmif_dumpbus accepts the following flags:
-h Print bus header only and skip contents.
-p pcapfile Convert bus contents to the pcap(3) format and write the result to pcapfile. The file - signifies stdout.
EXAMPLES
Feed the busfile contents to pcap:
$ shmif_dumpbus -p - busfile | tcpdump -r -
SEE ALSO pcap(3), shmif(4), tcpdump(8)CAVEATS
shmif_dumpbus does not lock the busfile and is best used for post-mortem analysis of the bus traffic.
The timestamp for each frame contains the sender's timestamp and may not be monotonically increasing with respect to the frame order in the
dump.
BSD January 12, 2011 BSD
Check Out this Related Man Page
SC_WARTS2PCAP(1) BSD General Commands Manual SC_WARTS2PCAP(1)NAME
sc_warts2pcap -- write packets included in warts object to a pcap file.
SYNOPSIS
sc_warts2pcap [-o outfile] [-s sort] [file ...]
DESCRIPTION
The sc_warts2pcap utility provides the ability to extract packets embedded in the tbit, sting, and sniff warts objects and write them to a
pcap file, which can be read by tcpdump and wireshark. The options are as follows:
-o outfile
specifies the name of the output file. If no output file is specified, it will be written to the standard output, provided that it
is not a tty.
-o sort
specifies how the pcap records (packets) are sorted before being written out. By default, no sorting is applied; the packets are
grouped as they are in the warts file. If packet sorting is specified, the packets are written out in timestamp order. Note that
this operation requires the packets to be read into memory to be sorted, so it will require a corresponding amount of memory to com-
plete.
EXAMPLES
The command:
sc_warts2pcap -o output.pcap file1.warts file2.warts
will read the packet objects from file1.warts, and then file2.warts, and write them to output.pcap.
The command:
gzcat file1.warts.gz | sc_warts2pcap -s packet >file1.pcap
will read the contents of the uncompressed warts file supplied on stdin, sort the packets by their timestamp, and then write the output to
file1.pcap.
SEE ALSO scamper(1), tcpdump(1)AUTHORS
sc_warts2pcap is written by Stephen Eichler and Matthew Luckie.
BSD October 15, 2010 BSD
Hi,
I am getting a bus error when i run the following code.
#include <stdio.h>
#include <sys/types.h>
#include <sys/ipc.h>
#include <sys/sem.h>
#include <errno.h>
main()
{
int semid,retval;
semid=semget(0x20,1,IPC_CREAT|0666);
retval= semctl(semid,0,GETVAL,0);
printf("The... (1 Reply)
Hi there
I am running soalris 9 on a sun fire 480r and all of a sudden (today) whenever the users run the command `top` we get the following message `bus error`
does anybody have any information on what this is all about and whether there is a routine i can perform to gather more... (3 Replies)
Hi, I got the following question regarding tcpdump and I would appreciate your help/feedback:
--Scenario
I am instructed to capture the network traffic by getting the tcpdump data/files of our network for every hour.
--Problem
Some of the connections are still open when the capture is done... (1 Reply)
Hallo,
I want to use tcpdump to analyze the NTP traffic on some of my machines. The machines that I want to analyze run HP-UX and linux. To use tcpdump 2 packages are required Libpcap and Tcpdump. I know that tcpdump (libcap?) sets the network interface to promiscuous mode. I have some... (1 Reply)
hello, i have a lot of pcap files (tcpdump output) that i want to compare.
every tcpdump output has two file, server and client.
what i want to do is:
1. take timestamp, source address, destination address, and packet id from each file (server and client)
2. find the packets sent from... (0 Replies)
what does the following mean and how can it be fixed
tcpdump: WARNING: arptype 65535 not supported by libpcap - falling back to cooked socket
Couldn't find user 'pcap' (1 Reply)
tcpdump: WARNING: arptype 65535 not supported by libpcap - falling back to cooked socket
cannot find user pcap
What does this mean ^^ and how can it be fixed? (1 Reply)
Hi,
I want to capture TCPDUMP of traffic, I tried doing this but did not find success..can anyone plz correct it.
# tcpdump -s0 -vv -w /home/osuresh/test_tcp_dump host 10.12.10.22 && port 161
bash: tcpdump: command not found
# tcpdump -s0 -vv -w /home/osuresh/test_tcp_dump host... (5 Replies)
i am trying to write a script to parse some tcpdump output, in each line of the tcpdump output, I know for sure there are 3 keywords exist:
User{different usernamehere}
NAS_ipaddr{different ip here}
Calling_station{ip or dns name here}
But the positions for these 3 keywords in the... (4 Replies)
Hi,
I have a standard pcap file created using tcpdump. The file looks like
06:49:36.487629 IP 202.1.175.252 > 71.126.222.64: ICMP echo request, id 52765, seq 1280, length 40
06:49:36.489552 IP 192.120.148.227 > 71.126.222.64: ICMP echo request, id 512, seq 1280, length 40
06:49:36.491812 IP... (8 Replies)
I would like to know if there is a way to dump the network traffic of a single application. I tried with tcpdump but I couldn't find a way. Is there a patch, which enables that or does someone know an other application to do this? (2 Replies)
hey everyone,
I want to remove some characters from a string that i have with sed. For example if my string is:
a0=bus a1=car a2=truck
I want my output to look like this:
bus car truck
So i want to delete the two characters before the = and including the =. This is what i came up with... (3 Replies)
hello mates,
this is my first post. please help me out. i have got a file with some data in it. i am asked to write the timestamp as a header for that file. i mean the time the file created should be mentioned at the top of the file. i know we can use sed to insert a sentence but... (6 Replies)
Hi Friends,
Am new to Unix world and this is my first post in this forum.
I was stuck in displaying the content.
while displaying the content the below points to be taken care
1 ) The header format is repeating
2) To display the value in table format... (2 Replies)
How would someone save a file such as /etc/vpnc/test.conf locally into a temp file, so it can be queried? So for example if I used rsync to copy this file locally, how would I add that to a temp_file variable and discard it using unlink?
#include <stdio.h>
#include "error.h"
... (15 Replies)