Hi.
Have you ever get an
output like this:
"[EMAIL PROTECTED] ntop]#
tcpdump -r ntop-suspicious-pkts.deveth0.pcap
reading from file ntop-suspicious-pkts.deveth0.pcap, link-type EN10MB (Ethernet)
-11:-46:-20.262146 [|ether]
tcpdump: pcap_loop: bogus savefile header
reading from file ntop-suspicious-pkts.deveth0.pcap, link-type EN10MB (Ethernet)
-11:-46:-20.262146 [|ether]
tcpdump: pcap_loop: bogus savefile header
"
?
I tried tcpdump on 2
ntop installation (different hosts but same tcpdump-libpcap-ntop versions and
config) with the same results.
Strangely enough on
one of these installations at first tcpdump worked but having nothing done but
using ntop for a day or 2 I couldn't read the file
anymore.
I tried also
stopping ntop, deleting the files and restarting ntop with non
res.
Have you some
suggestions ?
Best
regards,
Riccardo
###########################################This message has been scanned by F-Secure Anti-Virus for Microsoft Exchange.
For more information, connect to http://www.f-secure.com/
_______________________________________________ Ntop mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop
