Hi Gilbert,
> A compatriot of yours has created a libpcap "driver" for win32, at
> http://netgroup-serv.polito.it/analyzer
>
> However, he seems to have used some Microsoft example source code from
> the DDK which he is not allowed to re-distribute; so he should not
> be distributing his port of libpcap in source form. Until that issue is
> resolved, neither of our projects can really use that libpcap.
I have no clue what kind of files he's using. For WinNT you can find all
you want @
"http://support.microsoft.com/support/ddk/ntddk/ntsamples/default.asp?";.
> This would be very interesting. I know of NDIS, but I know nothing about
> its API. Others on ethereal-dev do, though, so I'm copying this e-mail
> to that list.
I've started the porting of libpcap. I hope to have a runnign version
later this week hoping to have some time to work at it. The result has
to be open-source.
> Absolutely. Actually, the effort to make wiretap do packet capturing has
> stalled a bit. Wiretap only provides an interface for reading capture
> files, but it can read many different file types. I wanted to build
> filters into wiretap first, and then add capturing. But my BPF compiler
> never got very far.
> We do want to revisit the packet capture abilities of wiretap. Multiple-NIC
> capturing is a common request. I go back and forth between wanting to
> simply modify libpcap, or building this functionality into wiretap.
Keep me informed.
Cheers, Luca.
--
Luca Deri Finsiel S.p.A.
Via Matteucci 34/B 56124 Pisa, Italy.
Ph. +39/050/968.639 Fax. +39/050/968.626
Email: l.deri@xxxxxxxxxx WWW: http://www.tlcpi.finsiel.it/~deri/
Software is about stuff, about getting hands dirty - Jim Coplien
