I am using OpenBSD OS and am running libpcap0.6.2
When i run tcpdump as:
tcpdump "port imap"
and after sometime kill it. It shows:
42 packets received by filter
0 packets dropped by kernel
where as when on the same network when i run tcpdump (tcpdump "port imap")
on a linux 2.2.16 OS it shows
0 packets received by filter
I think the BSD is showing some wrong info. It is infact showing the total
number of packets on the network rather than the ones caught using the filter.
I think the pcap_stats call is returning a false information. I tried getting
this info using a small program.
Is it a known problem. Is there a fix for it ?
- Ashley
-
This is the TCPDUMP workers list. It is archived at
http://www.tcpdump.org/lists/workers/index.html
To unsubscribe use mailto:[EMAIL PROTECTED]?body=unsubscribe
