From: rick.jones2@hp.com   
      
   Jorgen Grahn  wrote:   
   > On Sat, 2009-11-28, jerome wrote:   
   > > Is it possible to use tcpdump for gathering info on a wireless   
   > > connection, or is it necessary to use wireshark?   
      
   > They both use libpcap, so either both work or neither do. Based on   
   > the tcpdump man page, I expect them to work.   
      
   Expanding on that, it helps to think of gathering information on   
   network traffic as being in two parts - collection, and   
   display/analysis.  Think of them as "layers" if you like.  The libpcap   
   mentioned is a library employed by both tcpdump and wireshark (and   
   perhaps other tools as well) to perform packet capture.  Tcpdump and   
   wireshark then have other code to do the display/analysis.   
      
   Some display/analysis tools can post-process several capture formats   
   in addition to that produced by libpcap - for example, I believe that   
   wireshark or ethereal can process nettl traces from HP-UX.   
      
   rick jones   
      
   exploration of the similarities between this and "Shimmer" (Saturday   
   Night Live sketch about something that was both a floor wax and a   
   dessert topping...) is left as an exercise to the reader   
      
   --   
   I don't interest myself in "why." I think more often in terms of   
   "when," sometimes "where;" always "how much."  - Joubert   
   these opinions are mine, all mine; HP might not want them anyway... :)   
   feel free to post, OR email to rick.jones2 in hp.com but NOT BOTH...   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)