📄 111.htm

📁 unix高级编程原吗
💻 HTM
字号:
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<title>CTerm非常精华下载</title>
</head>
<body bgcolor="#FFFFFF">
<table border="0" width="100%" cellspacing="0" cellpadding="0" height="577">
<tr><td width="32%" rowspan="3" height="123"><img src="DDl_back.jpg" width="300" height="129" alt="DDl_back.jpg"></td><td width="30%" background="DDl_back2.jpg" height="35"><p align="center"><a href="http://apue.dhs.org"><font face="黑体"><big><big>123</big></big></font></a></td></tr>
<tr>
<td width="68%" background="DDl_back2.jpg" height="44"><big><big><font face="黑体"><p align="center">               ● UNIX网络编程                       (BM: clown)                </font></big></big></td></tr>
<tr>
<td width="68%" height="44" bgcolor="#000000"><font face="黑体"><big><big><p   align="center"></big></big><a href="http://cterm.163.net"><img src="banner.gif" width="400" height="60" alt="banner.gif"border="0"></a></font></td>
</tr>
<tr><td width="100%" colspan="2" height="100" align="center" valign="top"><br><p align="center">[<a href="index.htm">回到开始</a>][<a href="54.htm">上一层</a>][<a href="112.htm">下一篇</a>]
<hr><p align="left"><small>发信人: clown (梧桐叶), 信区: UNP <br>

标  题: 捕捉整个局域网数据报的程序 <br>

发信站: UNIX编程 (2001年11月19日17:22:49 星期一), 站内信件 <br>

  <br>

#include <stdio.h> <br>

#include <stdlib.h> <br>

#include <unistd.h> <br>

#include <sys/types.h> <br>

#include <sys/socket.h> <br>

#include <arpa/inet.h> <br>

#include <linux/if_ether.h> <br>

#include <netinet/ip.h> <br>

#include <sys/ioctl.h> <br>

#include <net/if.h> <br>

#define __FAVOR_BSD <br>

#include <netinet/tcp.h> <br>

#include <netinet/udp.h> <br>

#undef __FAVOR_BSD <br>

#include <netinet/in.h> <br>

#include <errno.h> <br>

#include <string.h> <br>

  <br>

#define SIZE 1500 <br>



  <br>

char dotted[16]; <br>

  <br>

void print_mac(struct ethhdr *); <br>

const char *print_ip(struct in_addr *); <br>

  <br>

int main() <br>

{ <br>

    int sockfd; <br>

    char buf[SIZE]; <br>

    struct sockaddr_in cliaddr; <br>

    int clilen; <br>

    unsigned long count = 0; <br>

    struct ifreq ifr; <br>

    char device[] = "eth1"; <br>

  <br>

    struct ethhdr *ethhdr; <br>

    struct ip *ip; <br>

    int hiplen; <br>

    struct tcphdr *tcp; <br>

    struct udphdr *udp; <br>

  <br>

  <br>

    errno = 0; <br>

    if((sockfd=socket(AF_INET, SOCK_PACKET, htons(ETH_P_ALL))) == -1) { <br>

    //if((sockfd=socket(AF_INET, SOCK_PACKET, htons(ETH_P_IP))) == -1) { <br>

        perror("socket"); <br>

        exit(1); <br>

    } <br>

  <br>

    strcpy(ifr.ifr_name, device); <br>

    if(ioctl(sockfd, SIOCGIFFLAGS, &ifr) == -1) { <br>

        perror("ioctl"); <br>

        exit(1); <br>

    } <br>

    ifr.ifr_flags |= IFF_PROMISC; <br>

    if(ioctl(sockfd, SIOCSIFFLAGS, &ifr) == -1) { <br>

        perror("ioctl"); <br>

        exit(1); <br>

    } <br>

  <br>

    while(1) { <br>

        memset(buf, 0, sizeof(buf)); <br>

        clilen = sizeof(struct sockaddr_in); <br>

        if(recvfrom(sockfd, buf, sizeof(buf), 0, (struct sockaddr *)&cliaddr, &c <br>



lilen) < 0) { <br>

            perror("recvfrom"); <br>

            exit(1); <br>

        } <br>

        printf("##%ld  ", count++); <br>

        //generally it's ether frame <br>

        ethhdr = (struct ethhdr *)buf; <br>

        print_mac(ethhdr); <br>

  <br>

        if(ethhdr->h_proto != htons(ETH_P_IP)) <br>

            continue; <br>

  <br>

        ip = (struct ip *)(buf + 14); <br>

        printf("\tSource ip: %s, ", print_ip(&ip->ip_src)); <br>

        printf("Dest ip: %s\n", print_ip(&ip->ip_dst)); <br>

        hiplen = ip->ip_hl << 2; <br>

        if(ip->ip_p == IPPROTO_TCP) { <br>

            tcp = (struct tcphdr *)(buf+ 14 + hiplen); <br>

            printf("\ttcp packet, source port %d, dest port %d\n", <br>

                    ntohs(tcp->th_sport), <br>

                    ntohs(tcp->th_dport)); <br>

        } else if(ip->ip_p == IPPROTO_UDP) { <br>



            udp = (struct udphdr *)(buf + 14 + hiplen); <br>

            printf("\tudp packet, source port %d, dest port %d\n", <br>

                    ntohs(udp->uh_sport), <br>

                    ntohs(udp->uh_dport)); <br>

        } else { <br>

            printf("\tunknown protocol: %d\n", ip->ip_p); <br>

        } <br>

    } <br>

} <br>

  <br>

void print_mac(struct ethhdr *eth) <br>

{ <br>

    unsigned char *d, *s; <br>

    unsigned short proto; <br>

  <br>

    d = eth->h_dest; <br>

    s = eth->h_source; <br>

    proto = ntohs(eth->h_proto); <br>

    printf("Src MAC: %x:%x:%x:%x:%x:%x, Dst MAC: %x:%x:%x:%x:%x:%x, proto 0x%04x <br>

\n", s[0], s[1], s[2], s[3], s[4], s[5], d[0], d[1], d[2], d[3], d[4], d[5], pro <br>

to); <br>

    return; <br>



} <br>

  <br>

const char *print_ip(struct in_addr *addr) <br>

{ <br>

    memset(dotted, 0, sizeof(dotted)); <br>

    return (inet_ntop(AF_INET, addr, dotted, sizeof(dotted))); <br>

} <br>

  <br>

  <br>

//可惜我用的是交换机，不能捕捉到别人的报文，sign <br>

//另外没有对具体的协议进行处理。 <br>

  <br>

  <br>

-- <br>

易朽的是生命，似那转瞬即谢的花朵；然而永存的，是对未来的渴望， <br>

是那生生世世传递下来的，不朽的，生的激情。每一朵勇敢开放的花， <br>

都是一个死亡唇边的微笑。 <br>

※ 来源:·UNIX编程 apue.dhs.org·[FROM: 202.114.1.61] <br>

</small><hr>
<p align="center">[<a href="index.htm">回到开始</a>][<a href="54.htm">上一层</a>][<a href="112.htm">下一篇</a>]
<p align="center"><a href="http://cterm.163.net">欢迎访问Cterm主页</a></p>
</table>
</body>
</html>
⌨️ 快捷键说明

复制代码 Ctrl + C
搜索代码 Ctrl + F
全屏模式 F11
切换主题 Ctrl + Shift + D
显示快捷键 ?
增大字号 Ctrl + =
减小字号 Ctrl + -