The pcap Facility
rvtrace uses the pcap facility to capture network packets.
Obtaining pcap
Before using rvtrace, you must first ensure that the pcap facility is properly installed.
On most UNIX platforms, pcap is ready to use.
For Windows, you can download the WinPcap NDIS packet capture driver from this URL:
| • | http://www.winpcap.org/install/default.htm |
For Windows platforms with multiple network interfaces, see also Selecting the Network Interface.
Packet Filtering
pcap has a flexible filtering language for selecting the set of packets to capture. rvtrace inherits this language through its -filter parameter.
You can select packets based on source, destination, host, network interface, port, packet length, and protocol. Packets that match the filter appear in rvtrace output; packets that do not match are ignored.