SourceFiles.org - Use the Source, Luke
Home | Register | News | Forums | Guide | MyLinks | Bookmark

Related Sites

Latest News
  General News
  Reviews
  Press Releases
  Software
  Hardware
  Security
  Tutorials
  Off Topic


Back to files

weedlogd version 1.0.0 (c) 1999 by Phil Jones <weed@firepool.com> the official home page for this application is at http://www.firepool.com/weedlog/

This program is released under GNU General Public license. See the file COPYING for more information.

This program is designed for debuging network connections, although if I get bored enough I might write in counter intelligence stuff and such for the hell of it.

The IGMP support in this program is mostly untested and just something I put in for pretty much no reason.

Option parts surrounded by [] are optional. Option parts surrounded by <> are required.

Synopsis
weedlogd [-F <file>] [-I] [-T] [-U] [-G] [-V<p> []] [-b] [-d []] [-f] [-h] [-v [#]] [-q] OR weedlogd -[F][I][T][U][G][V<p>][b][d][f][h][v][q] <file> [procotol verbose #] [debug #] [verbose #]

Command Line Options:

Protocols
-I : Watch for ICMP packets. -G : Watch for IGMP packets. -T : Watch for TCP packets. -U : Watch for UDP packets.

These are what protocols are avvailable to capture packets on. More than on protocol may be specified at a time. IGMP support is very new to this program but should improve once I have acquired the proper tools to test it.

Output Options: 

  -F <file>     : Use <file> instead of syslog when in Background/Daemon mode.
  -b            : Use Background/Daemon mode. (syslog)
  -f            : Use Foreground/Console mode.

These are what choices for output available. It is possible to send output to the console and to a file at the same time but not syslog is only available for output by itself. Perhaps I will change this in the near future. Please note that currently under glibc2 file output and background mode do not work. I will try and fix this when I find the time.

Verbose Options: 

  -V<p> []     : Set verbose level.
                - '<p>' should be replaced by a letter signifying a protocol.
                 - Valid protocols are 'I', 'G', 'T' and 'U'.
  -d []        : Use debug mode level .
                - effective debug mode levels: 5
  -v []        : Set verbose level.
                - effective verbose mode levels: 3

READ THIS: Giving the options a numeric argument is optional. If you use the compressed format (-dVTVIVUv...) and wish to give numeric arguments to some, but not all, of these options then the ones you wish to give numeric arguments to must come first or the others will steal their numbers. See below for a better explanation.
Debug mode is very very useless, unless of course you are me. Right now there are probly only 3 or 4 statements it effects and I'm considering removing it all anyway.
The verbose levels only affect the output of packet options. The things affected by different levels by protocol are as follows:

ICMP
Level 1: All packets are shown instead of all but replys. Level 2: ICMP checksums and Echo ID and Sequence plus the fragment mass transmit unit are shown. Level 3: All IP header options/flags are shown.
IGMP
Level 1: Nothing. Level 2: The IGMP checksum is shown. Level 3: All IP header options/flags are shown.
TCP
Level 1: All packets are shown instead of just SYN packets. Level 2: TCP Checksum, Sequence and Acknoledgment Sequence are shown. Level 3: All IP header options/flags are shown.
UDP
Level 1: UDP header length is shown, not much else to do for level 1. Level 2: UDP checksum is shown. Level 3: All IP header options/flags are shown. The -V<protocol> verbose options will always overrule the global -v verbose option. Also, the verbose levels are set up so that the levels for different protocols resemble each other as much as possible for ease of rememberance.

Misc. Options: 

  -h            : The built in help message.
  -q            : Be quiet when starting up (good for starting at boot).

These are just various options that didn't seem to fit elsewhere.

Examples
There are two ways for giving command line arguments. The spread out way and the compressed way. Of course, there are really the same way. Spread out would be:

weedlogd -<opt> -<opt> <arg> -<opt> -<opt> <arg> -<opt> or something similar. Compressed would be:

weedlogd -<option><option><option><option><option> <arg> <arg> etc.

It is possible to mixed these two formats so you have something like: weedlogd -<opt><opt><opt> <arg> -<opt> <arg> -<opt> -<opt><opt><opt>

Most the stuff should already be explained enough above with the exceptoin of the verboseness options. With the verbose options the number afterwards is optional. If you use one of the verbose options without the number is the same as saying the current verbose level plus 1. Giving the options "-VTVTVT" (which is for setting verbose levels on just TCP packets) is equivilant to giving the options "-TV 3", the first one incriments the level one at a time and the second just sets it to 3. Order is important. If you are typing out the command line args to watch the ICMP and TCP protocols and use '-VT' to set a verboseness of 1 on TCP and then decide you want to set a verboseness on ICMP of 3 while using the compressed format like this:

weedlogd -TIVTVI 3 then TCP will end up with a verboseness of 3 and ICMP with a verboseness of 1. There are 2 ways to make it work properly though. The first is that you can switch the 'VT' and 'VI' so you have 'weedlogd -TIVIVT 3' or you can seperate the 'VI' from the rest of the options like 'weedlogd -TIVT -VI 3'.

Ok, so I lied, there aren't really an examples there.

If you have questions or comments about this program, send an email to weed@firepool.com.


Other Sites

Discussion Groups
  Beginners
  Distributions
  Networking / Security
  Software
  PDAs

About | FAQ | Privacy | Awards | Contact
Comments to the webmaster are welcome.
Copyright 2006 Sourcefiles.org All rights reserved.