Dear sirs,
A couple of years ago I was given a binary of tcpdump 3.4, which has the
capability, when symlinked and invoked as 'tcpdumpr', to dump parsed radius
packets. According to the man page that came with it:
With the CPE01 patch, tcpdump has been enhanced to print
radius packets in a human readable format. It reads the
radius dictionary, clients, and vendors files to decipher
radius packets. The location of these files can be speci-
fied with the -D flag. If not specified, the files are
looked for in the order /usr/private/etc/raddb/,
/etc/raddb/, /usr/local/etc/raddb, and ./. If tcpdump is
renamed tcpdumpr and there is no snaplen specified with
the -s option, a snaplen of 512 used. If tcpdump is
renamed tcpdumpr and no "udp port" filter is assigned, a
filter of "udp port 1645 or udp port 1646" is assumed.
Finally, the -C, -D, -m, -V, and -W options have been
added.
Browsing your site, I was unable to find any reference to this CPE01 patch.
I would like to know if you are aware of this patch (I suppose so) and if it
is available as part of newer versions, as it is extremely useful for my
daily job. I would like to have it integrated into the source in order to be
able to compile it, as I'm by no means a tcpdump specialist.
Additional clue: the tar file I was given showed the files as owned by user
'meklund', group 'eng'. Perhaps this is familiar to someone among you.
Please let me know anything you might know about this. Thank you in advance.
regards,
cl.
_________________________________________________________________
Chat with friends online, try MSN Messenger: http://messenger.msn.com
-
This is the TCPDUMP workers list. It is archived at
http://www.tcpdump.org/lists/workers/index.html
To unsubscribe use mailto:[EMAIL PROTECTED]?body=unsubscribe
