-$Id: README,v 1.37 2000/04/13 11:20:49 gram Exp $
+$Id: README,v 1.38 2000/06/08 03:09:26 gram Exp $
General Information
------- -----------
to read multiple file types. You can read the following file
formats, and create display filters for them as well:
-libpcap (tcpdump -w), Sniffer (uncompressed), NetXray, Sniffer Pro,
-snoop, Shomiti, LANalyzer, Microsoft Network Monitor, AIX's iptrace,
-RADCOM's WAN/LAN Analyzer, Lucent/Ascend access products, HP-UX's nettl,
-Toshiba's ISDN routers, and the ISDN4BSD "i4btrace" utility.
+libpcap (tcpdump -w), Sniffer (compressed and uncompressed), NetXray,
+Sniffer Pro, snoop, Shomiti, LANalyzer, Microsoft Network Monitor, AIX's
+iptrace, RADCOM's WAN/LAN Analyzer, Lucent/Ascend access products, HP-UX's
+nettl, Toshiba's ISDN routers, and the ISDN4BSD "i4btrace" utility.
-In addition, it can read gzipped versions of any of these files,
+In addition, it can read gzipped versions of any of these files
automatically, if you have the zlib library available when compiling
Ethereal. Ethereal needs a modern version of zlib to be able to use
zlib to read gzipped files; version 1.1.3 is known to work. Versions
-$Id: README,v 1.21 2000/02/19 08:49:16 guy Exp $
+$Id: README,v 1.22 2000/06/08 03:09:32 gram Exp $
Wiretap is a library that is being developed as a future replacement for
libpcap, the current standard Unix library for packet capturing. Libpcap
wiretap reads the "libpcap" file format with its own code, rather than
using the "libpcap" library's code to read it.
-Sniffer (uncompressed)
+Sniffer (compressed and uncompressed)
-------
-The Sniffer format is documented in the Sniffer manual. Unfortunately,
-Sniffer manuals tend to document only the format for the Sniffer model
-they document. Token-Ring and ethernet seems to work well, though.
-If you have an ATM Sniffer file, both Guy and Gilbert would be *very*
-interested in receiving a sample. (see 'AUTHORS' file for our e-mail
-addresses).
+The uncompressed Sniffer format is documented in the Sniffer manual.
+Unfortunately, Sniffer manuals tend to document only the format for
+the Sniffer model they document. Token-Ring and ethernet seems to work
+well, though. If you have an ATM Sniffer file, both Guy and Gilbert
+would be *very* interested in receiving a sample. (see 'AUTHORS' file
+for our e-mail addresses).
LANalyzer
---------
Toshiba ISDN Router
-------------------
An under-documented command that the router supports in a telnet session
-is "snoop" (not related to the Solaris "snoop" command). If you give it
-the "dump" option, you'll get a hex dump of all packets across the router
-(except of your own telnet session -- good thinking Toshiba!). You can
-select a certain channel to sniff (LAN, B1, B2, D), but the default is all
-channels. You save this hex dump to disk with 'script' or by 'telnet |
-tee'. Wiretap will read the ASCII hex dump and convert it to binary data.
+is "snoop" (not related to the Solaris "snoop" command). If you give
+it the "dump" option (either by letting "snoop" query you for its next
+argument, or typing "snoop dump" on the command line), you'll get a hex
+dump of all packets across the router (except of your own telnet session
+-- good thinking Toshiba!). You can select a certain channel to sniff
+(LAN, B1, B2, D), but the default is all channels. You save this hex
+dump to disk with 'script' or by 'telnet | tee'. Wiretap will read the
+ASCII hex dump and convert it to binary data.
Gilbert Ramirez <gram@xiexie.org>
Guy Harris <guy@alum.mit.edu>
git.samba.org / metze / wireshark / wip.git / commitdiff