stackoom
  简体   繁体   中英

Display IP address from packets

 原文  2012-08-15 12:35:05       java/ jpcap/ jnetpcap

Question

How can I display IP Address from the packets.

I am able to display ports and protocols but not the IP addresses from a pcap file .

I am using jnetpcap . Any help ?

4 answers

solution1
 3  2012-08-15 13:20:24

The jnetpcap team states " Although these are native C library tutorials, you will find that the procedures and sequences of calls are nearly identical. If you know the C and java languages, you shouldn't have much trouble translating these tutorials to java and jNetPcap API. " That being said, take a look at this very in-depth tutorial the jnetpcap team recommends on their website.

Take a look near the end, under The actual sniffing , the tutorial lays out the packet contents in memory and tells you exactly where to look to find the IP header.

Other solutions:

If you're able to get a pcap file, you should be able to use the native DatagramPacket class for your needs. DatagramPacket has a method called getSocketAddress() that will get you the IP address and the port number.

solution2
 1  2014-02-09 16:01:31

PcapPacketHandler<String> jpacketHandler = new PcapPacketHandler<String>() {  

        final Tcp tcp=new Tcp();

    final Ip4 ip = new Ip4(); 

                public void nextPacket(PcapPacket packet, String user) {  


                    final Tcp tcp=new Tcp();
                        if(packet.hasHeader(tcp)){
                        if(packet.hasHeader(ip)){

                        packet.getHeader(tcp);
                        System.out.printf("Received packet at %s caplen=%-4d len=%-4d %s %s\n",  
                        new Date(packet.getCaptureHeader().timestampInMillis()),   
                        packet.getCaptureHeader().caplen(),  // Length actually captured  
                        packet.getCaptureHeader().wirelen(), // Original length   
                        user,FormatUtils.ip(ip.source())                              // User supplied object  
                        );  
                        //JBuffer buffer = packet;
                        //int size=packet.size();
                        byte[] arr=packet.getByteArray(0, packet.size());

                    }}}

            };

solution3
 0  2012-08-15 12:38:54

wireshark is able to display (and capture) the data. I will look into jnetpcap.

Edit: I have looked up the tutorial ( http://jnetpcap.com/tutorial/usage ). See the lines 72 (creating the return object) and 108-112 (filling and reading the return object).

solution4
 0  2018-07-14 18:09:54

I was able to get the IP address and port numbers of both source and destination endpoints from PCAP using the below Github example:

https://github.com/arisath/Pcap-dissection/blob/master/PcapDissector.java

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Capture packets details from IP address in java How to send udp packets using Ip address from source to destination host? How to custom formatter JFormattedTextField to display an IP address? Replace IP address from URI with another IP address using regex How to parse TCP/IP packets from socket in Java? How to do ip spoofing/change source address/raw socket programming for UDP packets in java? Capturing packets on a certain ip get IP address of a client from a server Failed to connect to any address from IP finder Get ip from udp url/address in tracker
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM