Bug 9243 - tcpdump under RedHat 6.1 captures/reads files in incorrect format
tcpdump under RedHat 6.1 captures/reads files in incorrect format
Status: CLOSED DUPLICATE of bug 6773
Product: Red Hat Linux
Classification: Retired
Component: tcpdump (Show other bugs)
All Linux
medium Severity high
: ---
: ---
Assigned To: Harald Hoyer
Depends On:
  Show dependency treegraph
Reported: 2000-02-08 14:44 EST by Daniel Senie
Modified: 2008-05-01 11:37 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2000-02-09 14:45:02 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Daniel Senie 2000-02-08 14:44:39 EST
When using tcpdump to capture packets to a file, or read packets from a
file, the file format used is inconsistent with the version of TCPDUMP on
RedHat 6.0 and 5.2 (and probably earlier). It would appear that some
alignment issues have occurred, perhaps due to changing compilers (egcs
vs. gcc).

The net result is that tcpdump-3.4-5 (on a RH5.2 system) for example,
cannot read files created on a 6.1 system running tcpdump-3.4-16, or vice

Third-party tools, such as EtherPeek (http://www.aggroup.com) are able to
read and decode tcpdump files from RedHat 6.0 and previous, but cannot
read them from RedHat 6.1. This backs up my contention that the file
format in 6.1 is messed up.
Comment 1 Jeff Johnson 2000-02-09 14:45:59 EST
*** This bug has been marked as a duplicate of 6773 ***

Note You need to log in before you can comment on or make changes to this bug.