linux的ubuntu14.04下的libpcap怎么测试

如题所述

推荐答案 2017-06-05

ä¸ºäºå¼åéè¦ï¼æå³å®ä½¿ç¨ææ°libpcapæºç åå®è£ãå¨Unixç¯å¢ä¸å®è£libpcapåºï¼éè¦
cç¼è¯å¨ï¼flexï¼bisonçï¼å®è£Ubuntuç³»ç»æ¶ï¼æ²¡æè¿äºåãå®è£flexéè¦m4ç¼è¯ç¯å¢ï¼å¦åä¼æç¤ºâGNU M4 is requiredâéè¯¯ã

1.å®è£ç³»ç»ä¾èµå
sudo apt-get install gcc libc6-dev
sudo apt-get install m4
sudo apt-get install flex bison

2.ä¸è½½libpcapæºç å¹¶å®è£
ä»å®ç½http://www.tcpdump.org/ä¸è½½ææ°çlibpcapçæ¬
cd /usr/local/src
wget http://www.tcpdump.org/release/libpcap-1.5.3.tar.gz
tar zxvf libpcap-1.5.3.tar.gz
cd libpcap-1.5.3
./configure
make
sudo make install

3.å®è£å¼åéè¦ç¨å°çä¾èµåº
sudo apt-get install libpcap-dev

4.æµè¯libpcapçå°ç¨åºï¼å½åä¸ºpcap_demo.cï¼ä»¥æ£éªç¯å¢æ¯å¦éç½®æ£ç¡®
#include <pcap.h>
#include <stdio.h>

int main(int argc, char *argv[])
{
pcap_t *handle;
/* Session handle */
char *dev; /* The device to sniff on */
char errbuf[PCAP_ERRBUF_SIZE];
/* Error string */
struct bpf_program fp;
/* The compiled filter */
char filter_exp[] = "port 80";
/* The filter expression */
bpf_u_int32 mask;
/* Our netmask */
bpf_u_int32 net;
/* Our IP */
struct pcap_pkthdr header;
/* The header that pcap gives us */
const u_char *packet;
/* The actual packet */

/* Define the device */
dev = pcap_lookupdev(errbuf);
if (dev == NULL) {
fprintf(stderr, "Couldn't find default device: %s\n", errbuf);
return(2);
}
/* Find the properties for the device */
if (pcap_lookupnet(dev, &net, &mask, errbuf) == -1) {
fprintf(stderr, "Couldn't get netmask for device %s: %s\n", dev, errbuf);
net = 0;
mask = 0;
}
/* Open the session in promiscuous mode */
handle = pcap_open_live(dev, BUFSIZ, 1, 1000, errbuf);
if (handle == NULL) {
fprintf(stderr, "Couldn't open device %s: %s\n", dev, errbuf);
return(2);
}
/* Compile and apply the filter */
if (pcap_compile(handle, &fp, filter_exp, 0, net) == -1) {
fprintf(stderr, "Couldn't parse filter %s: %s\n", filter_exp, pcap_geterr(handle));
return(2);
}
if (pcap_setfilter(handle, &fp) == -1) {
fprintf(stderr, "Couldn't install filter %s: %s\n", filter_exp, pcap_geterr(handle));
return(2);
}
/* Grab a packet */
packet = pcap_next(handle, &header);
/* Print its length */
printf("Jacked a packet with length of [%d]\n", header.len);
/* And close the session */
pcap_close(handle);
return(0);
}
å¼å§ç¼è¯ï¼
gcc -g pcap_demo.c -o pcap_demo -lpcap
å¼å§æ§è¡
./pcap_demo

5.æ³¨æçé®é¢
5.1.æ³¨æä½¿ç¨rootç¨æ·æ¥æ§è¡ï¼æèå¯¹æ®éç¨æ·ä½¿ç¨sudoæ¥æåæé
sudo pcap_demo
5.2.å¯¹ä¸äºPCAP APIå½æ°è¦æå¨é¢å°çè§£ï¼å¹¶æ¶å»æ´æ°ææ¡£ï¼æ¯å¦pcap_loopè¿ä¸ªå½æ°ï¼ä¸é¢æ¯å®ç½çman pageå°å
http://www.tcpdump.org/manpages/pcap.3pcap.html

温馨提示：答案为网友推荐，仅供参考

当前网址：http://22.wendadaohang.com/zd/fI260If6TSTCC2I2XI.html

相似回答

ubuntu 安装 libpcap和tcpdump的问题:答：安装libcap开发包后，再试试看 sudo apt-get install libpcap-dev sudo apt-get install libnids-dev sudo apt-get install libnet1-dev

ubuntu下没有没有pcap.h头文件,怎么办答：在www.tcpdump.org页面中可下载源码：libpcap-1.0.0.tar.gz cd到文件目录：view plaincopy to clipboardprint?tar -xvf libpcap-1.0.0.tar.gz cd libpcap-1.0.0.tar.gz ./configure make sudo make install tar -xvf libpcap-1.0.0.tar.gz cd libpcap-1.0.0.tar.gz ./configure ...

大家正在搜