Welcome to Soft32 Linux Forums!
FAQFAQ    SearchSearch      ProfileProfile    Private MessagesPrivate Messages   Log inLog in

sniffit rpm; where to find

  
   Soft32 Home -> Linux -> Partner Relationship Management RSS
Next:  Need to be convinced , newbie, curious about RPM  
Author Message
ion

External


Since: Apr 22, 2005
Posts: 2



(Msg. 1) Posted: Fri Apr 22, 2005 1:21 pm
Post subject: sniffit rpm; where to find
Archived from groups: linux>redhat>rpm (more info?)
Help!
I have an server application that's giving instructions to a client
which is responding badly. So, I'd like to view the network traffice
between them, and see what's being sent back and forth.
Is sniffit the best tool for this?
I can't find sniffit. Where can I get an RPM?
Thanks!
Ion
Back to top
Login to vote
Moe Trin

External


Since: Dec 26, 2004
Posts: 371



(Msg. 2) Posted: Sat Apr 23, 2005 5:16 pm
Post subject: Re: sniffit rpm; where to find [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
In article <1114219304.500237.166640 DeleteThis @z14g2000cwz.googlegroups.com>, ion wrote:

> I have an server application that's giving instructions to a client
>which is responding badly. So, I'd like to view the network traffice
>between them, and see what's being sent back and forth.
> Is sniffit the best tool for this?

'sniffit' is a Sun application. I get four hits on sunsite, but none of
them are that modern.

Title: SniffIt
Version: 0.3.5
Entered-date: 15MAR99
Description: Linux network sniffing tool
Keywords: sniffit sniffer network ethernet
Author: coder DeleteThis @reptile.rug.ac.be (Brecht Claerhout)
Maintained-by: dmarion DeleteThis @debian.org (Damjan Marion)
Primary-site: sunsite.unc.edu /incoming/Linux
197k sniffit-0.3.5.tar.gz
467 sniffit.lsm
Alternate-site:
Original-site: http://reptile.rug.ac.be/~coder/sniffit/sniffit.html
Platforms: Linux
Copying-policy: unknown

It's actually in the ./system/security/ directory at any sunsite mirror.

-rw-rw-r-- 1 keeper admin 197202 Mar 15 1999 sniffit-0.3.5.tar.gz
-rw-rw-r-- 1 keeper admin 467 Mar 15 1999 sniffit.lsm

> I can't find sniffit. Where can I get an RPM?

Most people would use 'tcpdump' for this (supplied with virtually all
Linux distributions) or ethereal (quite common in Linux distributions).

Old guy
Back to top
Login to vote
ion

External


Since: Apr 22, 2005
Posts: 2



(Msg. 3) Posted: Thu Apr 28, 2005 5:58 am
Post subject: Re: sniffit rpm; where to find [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Thanks, Moe. tcpdump is what I've been using, but I was looking for
something new. I don't seem to be capturing all of the characters being
passed over the wire. I've been running it with
tcpdump -vvv -X -s 500 ip host 100.100.100.100
where the hundreds here stand in for the IP address with which I'd like
to see the communication. I seem to occasionally get periods replacing
blocks of text.
Back to top
Login to vote
Moe Trin

External


Since: Dec 26, 2004
Posts: 371



(Msg. 4) Posted: Fri Apr 29, 2005 1:30 pm
Post subject: Re: sniffit rpm; where to find [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
In article <1114711118.282578.271950.DeleteThis@z14g2000cwz.googlegroups.com>, ion wrote:

>Thanks, Moe. tcpdump is what I've been using, but I was looking for
>something new.

Some people like ethereal as a form of replacement. You could go to
rpmfind.net or freshrpms.net to see if you can find ethereal if it's
not on your distribution, or possibly even see if someone has packaged
sniffit as an rpm. The problem you are likely to run into is a version
hell with libpcap - required for all of these packet sniffers.

>I don't seem to be capturing all of the characters being passed over the
>wire. I've been running it with
>tcpdump -vvv -X -s 500 ip host 100.100.100.100
>where the hundreds here stand in for the IP address with which I'd like
>to see the communication.

OK - you might increase the -s to 1500 (or zero - see the man page entry
for the -s option) which will grab entire frames.

>I seem to occasionally get periods replacing blocks of text.

-X Print each packet (minus its link level header) in
hex and ASCII. This is very handy for analysing
new protocols.

You may be seeing non-ASCII characters. Look at the hex values. Are they
non-printable characters (0x00 to 0x1F and 0x7F) or non-ASCII values
(0x80 to 0xFF)? Remember, ASCII is a seven bit code, and tcpdump will not
be able to display an ASCII character for anything else, so it's normally
shown as a period.

Old guy
Back to top
Login to vote
Display posts from previous:   
Related Topics:
Where do I find these rpms?? - Hi there, I do need the following rpms: libcrypto.so.0.9.6 libssl.so.0.9.6 Where do I found these files for RedHat..

Where to find php-4.3.0 or above for RH 8.0? - I have been searching for the referenced php rpm for RH 8 and the latest I could find was 4.2.2.17 which is a long way....

ld cannot find -lssl error - Hi All, My computer: Dual Xeon,7505 chipset, Red Hat 9 rpm -qa "*make*" "*automake*" &...

Red Hat Enterprise - where to find g++ - Hi, I have got a Red Hat Enterprise: Linux version 2.4.20-30.9INLDSmpIPvsDs (root@kxp6.dialtone.com) (gcc version 3.2.2...

How To Find packages included in gcc 3.3.3 - Hi all, I am a newbie to linux. I want to make a rpm from a gcc 3.3.3 source tar files. I read the online documentation...

can't find libstdc++-libc6.1-2.so.3 for red hat 9? - trying to run xmp3burn using wish or ./ command and i'm missing libstdc++-libc6.1-2.so.3 and i can't seen to find an..
       Soft32 Home -> Linux -> Partner Relationship Management All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Categories:
 Windows
  Linux
 Mac
 PDA

[ Contact us | Terms of Service/Privacy Policy ]