I am having big difficulties using the 1.4.x libraries in the following environment:
- Ubuntu 64-bit
- Eclipse 64-bit edition
I have followed the setup # 2 instructions for setting up the library with Eclipse (http://jnetpcap.com/?q=eclipse) to no avail. I have added /usr/share/java/jnetpcap.jar as an external archive and I have added the location (/usr/lib/) of the libjnetpcap.so and libjnetpcap-pcap100.so native libraries to the eclipse configuration of the jar. I have even tried placing the .so and .jar files in my home directory and changing the configuration appropriately and that didn't work. Then I tried to add -Djava.library.java=/usr/lib/ in the configuration for the eclipse project (obviously with the .so back in /usr/lib) and it still didn't work.
I have seen many other users reporting this same issue, but there doesn't seem to be a satisfactory fix, other than downgrading to 1.3. I would happily use 1.3, but I need SCTP support, which is implemented only in 1.4.x.
Any help with this matter would be greatly appreciated, as I have wasted a huge amount of time trying to get this to work.
What is the recommended way to distribute a cross-platform program that uses jNetPcap? Is it possible to package a Java application with all versions of jNetPcap?
Also, if Pcap is installed after the Java program has already started running, is it possible to use jNetPcap without restarting the program?
hi in JFlowMap example the data return like this
flow 10.1.1.101:3198 -> 10.1.1.1:80 Tcp fw/rev/tot pkts=[9/10/19],
flow 10.1.1.101:3199 -> 10.1.1.1:80 Tcp fw/rev/tot pkts=[9/11/20],
flow 184.108.40.206:80 -> 10.1.1.101:3179 Tcp fw/rev/tot pkts=[1/0/1],
flow 10.1.1.101:3196 -> 10.1.1.1:80 Tcp fw/rev/tot pkts=[6/6/12],
flow 10.1.1.101:3197 -> 10.1.1.1:80 Tcp fw/rev/tot pkts=[6/6/12],
flow 10.1.1.101:3195 -> 10.1.1.1:80 Tcp fw/rev/tot pkts=[5/5/10],
flow 220.127.116.11:80 -> 10.1.1.101:3183 Tcp fw/rev/tot pkts=[6/6/12],
flow 10.1.1.101:3190 -> 10.1.1.1:80 Tcp fw/rev/tot pkts=[5/5/10],
flow 18.104.22.168 -> 10.1.1.101:6 Ip4 tot pkts=,
flow 10.1.1.101:3189 -> 10.1.1.1:80 Tcp fw/rev/tot pkts=[1/1/2],
flow 10.1.1.101:3200 -> 10.1.1.1:80 Tcp fw/rev/tot pkts=[74/135/209],
flow 10.1.1.101:3193 -> 22.214.171.124:80 Tcp fw/rev/tot pkts=[9/6/15],
flow 10.1.1.101:3192 -> 126.96.36.199:80 Tcp fw/rev/tot pkts=[8/6/14],
flow 10.1.1.101:3194 -> 188.8.131.52:80 Tcp fw/rev/tot pkts=[8/6/14],
flow 184.108.40.206:80 -> 10.1.1.101:3185 Tcp fw/rev/tot pkts=[6/6/12],
flow 220.127.116.11:80 -> 10.1.1.101:3184 Tcp fw/rev/tot pkts=[6/6/12],
flow 18.104.22.168:80 -> 10.1.1.101:3187 Tcp fw/rev/tot pkts=[6/6/12],
flow 10.1.1.101:3191 -> 22.214.171.124:80 Tcp fw/rev/tot pkts=[8/6/14],
i want understand what this part exactly mean fw/rev/tot pkts=[9/6/15]?
Is there an automated way to sort/capture packets by communication trace? so I can store the packets chronologically and grouped by communication trace. I need to know who started a communication "talk" by looking who send the first packet that initialize the conversation.
The examples that I use from this web let me to capture all the packets, but I can't relate them by communication trace (and chronologically sorted).
Should I write a program with that kind of analysis? or there is an easy way provided by the API?