diff options
| author |   Laurent Ghigonis <laurent@p1sec.com> | 2013-06-05 12:43:04 +0200 |
|---|---|---|
| committer | Laurent Ghigonis <laurent@p1sec.com> | 2013-06-05 12:43:04 +0200 |
| commit | 4cd625522bb0a3d2347e01536518a181c04f19dd (patch) | |
| tree | dd488427770b2a5c3d40be9616376c578bd23c42 | |
| parent | glougloud: fix usage() (diff) | |
| download | glouglou-4cd625522bb0a3d2347e01536518a181c04f19dd.tar.xz glouglou-4cd625522bb0a3d2347e01536518a181c04f19dd.zip | |
gg_sniff: update README to match reality and talk about filters
| -rw-r--r-- | gg_sniff/README.txt | 22 |
1 files changed, 17 insertions, 5 deletions
diff --git a/gg_sniff/README.txt b/gg_sniff/README.txt index 8d71005..628e703 100644 --- a/gg_sniff/README.txt +++ b/gg_sniff/README.txt @@ -1,7 +1,5 @@ gg_sniff - glouglou probe client for network activity -WARNING: Work in progress, don't expect this to work ! - Requirements ============ @@ -13,14 +11,28 @@ Requirements Installation ============ -git clone git@meg:glouglou -cd gg_sniff make && sudo make install Usage ===== -gg_sniff -i eth0 +sudo gg_sniff + +sudo gg_sniff -i eth0 + +sudo gg_sniff -i eth0 10.137.2.9 + +sudo gg_sniff -f "net 10.137.1.0/24 and not port 4430 and not port 4431 and not port 53" 10.137.2.9 + +(10.137.2.9 is where glougloud is) + +Notes on capture +================ + +By default gg_sniff captures on any interfaces (works on Linux only). +By default the capture filter is "not port 4430 and not port 4431 and not port 53". +You can change it via -f, but dont forget to keep filtering out port 4430 and +port 4431 because those are the ports used by glouglou itself ! Notes on architecture and security ================================== |