Lucky Leavell wrote:

I need a command line based packet sniffer. (I would use tethereal but this system has no graphical stuff.) ALl it needs to do is collect raw packets for analysis by ethereal on a different box.

Thank you, Lucky Leavell

man tcpdump Ethereal can read tcpdump captures. Also, you can always run Ethereal remotely, thanks to X. I do that, with my firewall, which doesn't have a graphical desktop. I just use ssh -X to the firewall and run Ethereal. Incidentally, if you do that, you don't want to monitor the port you're using to access that computer, unless you filter what you capture.

Lucky Leavell wrote:

I need a command line based packet sniffer. (I would use tethereal but this system has no graphical stuff.) ALl it needs to do is collect raw packets for analysis by ethereal on a different box.

Thank you, Lucky Leavell

http://packetstorm.linuxsecurity.com/defense/sniff/ I've used tcpdump and ettercap. Once I used ettercap on a customer's network to capture cross site packets in order to trace a fault, unfortunately, the vendor used a Windows program that didn't understand the packets, so I downloaded a trial version of the program they used that only worked for so many days, ran it under crossover office without problems - the price was steep for the full version, but the trial version did the job. Regards Sid. -- Sid Boyce ... Hamradio License G3VBV, Keen licensed Private Pilot Retired IBM Mainframes and Sun Servers Tech Support Specialist Microsoft Windows Free Zone - Linux used for all Computing Tasks