Hi,
after the problem I had with windows I decided to copile ntop for
linux (2.1.50+).
It seeems that if I use it sniffing live traffic everithing is OK.
But if I use it with a dump file from tcpdump, it seems that tcpdump
can't understand the kind of traffic in the dump file. I'm sure that
the dumpfile contains a lot of IP traffic (I can see it through
ethereal, mainly POP3 traffic) but the trafic is classified ad OSI or
Other.
It seems that the size of traffic is Ok (the dumpfile is 1Mb and the
sum of traffic showed by ntop is about 1Mb).
Is there a problem perhaps depending... ehi perhaps now I understand:
if I dump a file with
tcpdump -i any -C 1 -w dumpfile
I have the problem,
If I dump a file with
tcpdump -i eth0 -C 1 -w dumpfile
I don't have the problem so the problem is that ntop doesn't work
with tcpdump option "-i any".
Am I right?
Bye
--
Mauro G. Todeschini
e-mail: [EMAIL PROTECTED]
_______________________________________________
Ntop mailing list
[EMAIL PROTECTED]
http://lists.ntop.org/mailman/listinfo/ntop
