Login or Register to Ask a Question and Join Our Community


Programming

printing out information from pcap file

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums Programming printing out information from pcap file
# 1  
Old 11-11-2010
printing out information from pcap file
Hi Folks,

i got the following Problem: I want to make an analysis on a pcap file. (diestance between different packets and so on) The difficulty now... it's not a simple Ethernet/ IP/ File, but it's a SS7 file.
There are the Layers MTP2 MTP3 and ISUP. My analysis depends on the ISUP Layer.
Now I'm searching for a way to do this. I really don't prefer C, because I want to write those things into a Database. C is not really made for that.
So I took a look on the Java wrapper. There I couldn't find any support for SS7. Also with the python wrapper.

Is there anyone with a quick hint?

Probably a little bit Backround, here what I want to suck out of every message:
- timestamp
- packetnumber
- messagetype (IAM,SAM,ACM...)
- CIC (Number indicating the used Channel)
....so I need a library to decode this.

Thanks for your help!!

greetz myname
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Programming

PCAP -> PFRING

Hi I have a program that captures packets with the libpcap library by calling the pcap-functions, e.g. pcap_next(...). I would like to use PF_RING for the program and therefore I would have to adjust the calling functions to pfring_open(...) pfring_recv(...) I'm pretty knew in network... (0 Replies)
Discussion started by: Freaky123
0 Replies

2. Shell Programming and Scripting

Help in printing out information

Hello everyone, I got a small question. Can I ask if there is any way to shorten the codes at the bottom cuz it looks abit messy. My Text file contain.. With ":" as a delimiter Little Prince:The Prince:15.00:188:9 Lord of The Ring:Johnny Dept:56.80:100:38 At the end of the day... (6 Replies)
Discussion started by: aLHaNz
6 Replies

3. Shell Programming and Scripting

Sampling pcap file

Hi, I have a standard pcap file created using tcpdump. The file looks like 06:49:36.487629 IP 202.1.175.252 > 71.126.222.64: ICMP echo request, id 52765, seq 1280, length 40 06:49:36.489552 IP 192.120.148.227 > 71.126.222.64: ICMP echo request, id 512, seq 1280, length 40 06:49:36.491812 IP... (8 Replies)
Discussion started by: sajal.bhatia
8 Replies

4. Programming

Packet capturing using pcap

Hi, i am using a linux CentOS machine. I have 2 real network interfaces eth0, eth1 and 2 virtual interfaces tap0 and tap1. I am using PCAP library to capture the packets on theses interfaces. If i specify the interface as "any", i cannot find a way to know from which interface the packet... (1 Reply)
Discussion started by: rahulnitk2004
1 Replies

5. UNIX for Dummies Questions & Answers

Filtering pcap files

Hi, I am new at UNIX and programing in general and only have a basic knowledge of C++. I am helping out with some research at a college and was given the task to sort through captured packets via IP addresses. I was wondering if anyone could help me with writing a code which filters through pcap... (1 Reply)
Discussion started by: hershey101
1 Replies

6. Shell Programming and Scripting

Pcap.h Sniffing

Can someone please help me figure out how to use pcap.h to sniff packets between only 2 computers whose mac addresses are know? Thanks (0 Replies)
Discussion started by: papabearcares
0 Replies

7. Programming

Pcap.h Sniffing

Can someone please help me figure out how to use pcap.h to sniff packets between only 2 computers whose mac addresses are know? Thanks (0 Replies)
Discussion started by: papabearcares
0 Replies

8. Programming

pcap.h

I cant use pcap.h include file. How can I do so? :confused: (8 Replies)
Discussion started by: Pervez Sajjad
8 Replies

9. Programming

Compiling Pcap.c

I don't know if this is the correct forum to post this but hopefully someone can atleast point me in the right direction if they can't help me. I am trying to install the Net::Pcap module for perl from Tim Potter version .04. I have installed gcc 2.95.3 on my Solaris 8 box. I am sure it's just... (6 Replies)
Discussion started by: TioTony
6 Replies
Login or Register to Ask a Question

LEARN ABOUT CENTOS

pcap_set_tstamp_precision

PCAP_SET_TSTAMP_PRECISION(3PCAP)										  PCAP_SET_TSTAMP_PRECISION(3PCAP)

NAME

       pcap_set_tstamp_precision - set the time stamp precision returned in captures

SYNOPSIS

       #include <pcap/pcap.h>

       int pcap_set_tstamp_precision(pcap_t *p, int tstamp_precision);

DESCRIPTION

       pcap_set_tstamp_precision()  sets the precision of the time stamp desired for packets captured on the pcap descriptor to the type specified
       by tstamp_precision.  It must be called on a pcap descriptor created by pcap_create() that has not yet been activated  by  pcap_activate().
       Two time stamp precisions are supported, microseconds and nanoseconds. One can use options PCAP_TSTAMP_PRECISION_MICRO and PCAP_TSTAMP_PRE-
       CISION_NANO to request desired precision. By default, time stamps are in microseconds.

RETURN VALUE

       pcap_set_tstamp_type() returns 0 on success if the specified time stamp precision is expected to be  supported  by  the	operating  system,
       PCAP_ERROR_TSTAMP_PRECISION_NOTSUP if operating system does not support requested time stamp precision, PCAP_ERROR_ACTIVATED if called on a
       capture handle that has been activated.

SEE ALSO

       pcap(3PCAP), pcap_get_tstamp_precision(3PCAP), pcap-tstamp(7)

								  27 August 2013				  PCAP_SET_TSTAMP_PRECISION(3PCAP)