我又来请教了(NET::Pcap模块抓包的问题)

yangchaohi

[table=95%][tr][td][font=FixedSys][color=#000000]
[color=#0000FF]use[/color] Net[color=#0000CC]:[/color][color=#0000CC]:[/color]Pcap[color=#0000CC];[/color]
[color=#0000FF]use[/color] strict[color=#0000CC];[/color]
[color=#0000FF]use[/color] [color=#FF0000]Socket[/color][color=#0000CC];[/color]


[color=#0000FF]sub[/color] got_a_dev[color=#0000CC]{[/color]
 [color=#0000FF]my[/color] [color=#0000FF]$[/color][color=#008080]err[/color] [color=#0000CC]=[/color] [color=#FF00FF]''[/color][color=#0000CC];[/color]
 [color=#0000FF]my[/color] [color=#0000FF]$[/color][color=#008080]net[/color] [color=#0000CC]=[/color] [color=#FF00FF]''[/color][color=#0000CC];[/color]
 [color=#0000FF]my[/color] [color=#0000FF]$[/color][color=#008080]mask[/color] [color=#0000CC]=[/color] [color=#FF00FF]''[/color][color=#0000CC];[/color]
 [color=#0000FF]my[/color] [color=#0000FF]%[/color][color=#800000]devinfo[/color][color=#0000CC];[/color]
 [color=#0000FF]my[/color] [color=#0000FF]$[/color][color=#008080]good_dev[/color][color=#0000CC]=[/color][color=#FF00FF]''[/color][color=#0000CC];[/color]

 [color=#FF9900]#获得所有的设备
[/color]
 [color=#0000FF]my[/color] [color=#0000FF]@[/color][color=#808000]devs[/color] [color=#0000CC]=[/color] Net[color=#0000CC]:[/color][color=#0000CC]:[/color]Pcap[color=#0000CC]:[/color][color=#0000CC]:[/color]pcap_findalldevs[color=#0000CC]([/color][color=#0000CC]\[/color][color=#0000FF]%[/color][color=#800000]devinfo[/color][color=#0000CC],[/color] \[color=#0000FF]$[/color][color=#008080]err[/color][color=#0000CC])[/color][color=#0000CC];[/color]


 [color=#FF0000]print[/color] [color=#FF00FF]"The number of devices: "[/color][color=#0000CC],[/color][color=#0000FF]$[/color][color=#FF9900]#devs+1,"\n";
[/color]

 [color=#0000FF]for[/color] [color=#0000FF]my[/color] [color=#0000FF]$[/color][color=#008080]dev[/color] [color=#0000CC]([/color][color=#0000FF]@[/color][color=#808000]devs[/color][color=#0000CC])[/color] [color=#0000CC]{[/color]
 

 [color=#FF9900]#Net::Pcap::lookupnet function for finding which network is attached to a particular device.
[/color]
 [color=#0000FF]if[/color] [color=#0000CC]([/color] [color=#0000CC]([/color]Net[color=#0000CC]:[/color][color=#0000CC]:[/color]Pcap[color=#0000CC]:[/color][color=#0000CC]:[/color]lookupnet[color=#0000CC]([/color][color=#0000FF]$[/color][color=#008080]dev[/color][color=#0000CC],[/color] \[color=#0000FF]$[/color][color=#008080]net[/color][color=#0000CC],[/color] \[color=#0000FF]$[/color][color=#008080]mask[/color][color=#0000CC],[/color] \[color=#0000FF]$[/color][color=#008080]err[/color][color=#0000CC])[/color] [color=#0000CC])[/color] [color=#0000CC]=[/color][color=#0000CC]=[/color] [color=#0000CC]-[/color]1 [color=#0000CC])[/color] [color=#0000CC]{[/color]
   [color=#FF0000]die[/color] [color=#FF00FF]"Net::Pcap::lookupnet failed. Error was $err"[/color][color=#0000CC];[/color]
 [color=#0000CC]}[/color]
 [color=#0000FF]else[/color][color=#0000CC]{[/color]
 [color=#0000FF]$[/color][color=#008080]net[/color] [color=#0000CC]=[/color] inet_ntoa[color=#0000CC]([/color][color=#FF0000]pack[/color] [color=#FF00FF]"N"[/color][color=#0000CC],[/color] [color=#0000FF]$[/color][color=#008080]net[/color][color=#0000CC])[/color][color=#0000CC];[/color] [color=#FF9900]# 2281480192 --> 135.252.160.0
[/color]
 [color=#0000FF]$[/color][color=#008080]mask[/color] [color=#0000CC]=[/color] inet_ntoa[color=#0000CC]([/color][color=#FF0000]pack[/color] [color=#FF00FF]"N"[/color][color=#0000CC],[/color] [color=#0000FF]$[/color][color=#008080]mask[/color][color=#0000CC])[/color][color=#0000CC];[/color] [color=#FF9900]# 4294966784 --> 255.255.254.0
[/color]
 [color=#FF9900]#print "Net:$net\nMask:$mask\n";
[/color]
 
  [color=#0000CC]}[/color]
  [color=#0000FF]if[/color] [color=#0000CC]([/color][color=#0000FF]$[/color][color=#008080]devinfo[/color][color=#0000CC]{[/color][color=#0000FF]$[/color][color=#008080]dev[/color][color=#0000CC]}[/color] [color=#0000CC]=[/color][color=#0000CC]~[/color][color=#0000CC]/[/color]Intel[color=#0000CC]/[/color][color=#0000CC])[/color][color=#0000CC]{[/color]
 [color=#0000FF]$[/color][color=#008080]good_dev[/color][color=#0000CC]=[/color][color=#0000FF]$[/color][color=#008080]dev[/color][color=#0000CC];[/color]
 [color=#0000FF]return[/color] [color=#0000FF]$[/color][color=#008080]good_dev[/color][color=#0000CC];[/color]
 [color=#0000CC]}[/color]
[color=#FF9900]# print "show : $dev : $devinfo{$dev}\n";
[/color]


  [color=#0000CC]}[/color]


[color=#0000CC]}[/color]

[color=#0000FF]my[/color] [color=#0000FF]$[/color][color=#008080]interface[/color][color=#0000CC]=[/color][color=#0000CC]&[/color]got_a_dev[color=#0000CC]([/color][color=#0000CC])[/color][color=#0000CC];[/color]
[color=#FF0000]print[/color] [color=#FF00FF]"get:"[/color][color=#0000CC].[/color][color=#0000FF]$[/color][color=#008080]interface[/color][color=#0000CC].[/color][color=#FF00FF]"\n"[/color][color=#0000CC];[/color]

[color=#0000FF]my[/color] [color=#0000FF]$[/color][color=#008080]err[/color] [color=#0000CC]=[/color] [color=#FF00FF]''[/color][color=#0000CC];[/color]
[color=#0000FF]my[/color] [color=#0000FF]$[/color][color=#008080]pcap[/color] [color=#0000CC]=[/color] Net[color=#0000CC]:[/color][color=#0000CC]:[/color]Pcap[color=#0000CC]:[/color][color=#0000CC]:[/color]open_live[color=#0000CC]([/color]
                [color=#0000FF]$[/color][color=#008080]interface[/color][color=#0000CC],[/color]1600[color=#0000CC],[/color]1[color=#0000CC],[/color]0[color=#0000CC],[/color][color=#0000CC]\[/color][color=#0000FF]$[/color][color=#008080]err[/color]
   [color=#0000CC])[/color] [color=#0000FF]or[/color] [color=#FF0000]die[/color] [color=#FF00FF]"loop1: $!\n"[/color] [color=#0000CC];[/color]
   
   
Net[color=#0000CC]:[/color][color=#0000CC]:[/color]Pcap[color=#0000CC]:[/color][color=#0000CC]:[/color]loop[color=#0000CC]([/color][color=#0000FF]$[/color][color=#008080]pcap[/color][color=#0000CC],[/color] 10[color=#0000CC],[/color] \[color=#0000CC]&[/color]callback[color=#0000CC],[/color] [color=#FF00FF]"user_data"[/color][color=#0000CC])[/color] [color=#0000FF]or[/color] [color=#FF0000]die[/color] [color=#FF00FF]"loop2: $!\n"[/color][color=#0000CC];[/color]
  
[color=#0000FF]sub[/color] callback [color=#0000CC]{[/color]
            [color=#0000FF]my[/color] [color=#0000CC]([/color][color=#0000FF]$[/color][color=#008080]user_data[/color][color=#0000CC],[/color] [color=#0000FF]$[/color][color=#008080]header[/color][color=#0000CC],[/color] [color=#0000FF]$[/color][color=#008080]packet[/color][color=#0000CC])[/color] [color=#0000CC]=[/color] [color=#0000FF]@[/color][color=#808000]_[/color][color=#0000CC];[/color]
            [color=#FF0000]print[/color] [color=#0000FF]$[/color][color=#008080]header[/color][color=#0000CC].[/color][color=#FF00FF]"\n"[/color][color=#0000CC];[/color]
        [color=#0000CC]}[/color][/color][/font][/td][/tr][/table]



抓包的时候Net::Pcap::loop函数会提示一个bad file descriptor错误....在线等待大大,,,感谢~~哈哈

yangchaohi

我发过哈...晕倒



use Net:cap;
use strict;
use Socket;


sub got_a_dev{
my $err = '';
my $net = '';
my $mask = '';
my %devinfo;
my $good_dev='';

#获得所有的设备
my @devs = Net:cap::pcap_findalldevs(\%devinfo, \$err);


print "The number of devices: ",$#devs+1,"\n";

for my $dev (@devs) {


#Net:cap::lookupnet function for finding which network is attached to a particular device.
if ( (Net:cap::lookupnet($dev, \$net, \$mask, \$err) ) == -1 ) {
   die "Net:cap::lookupnet failed. Error was $err";
}
else{
$net = inet_ntoa(pack "N", $net); # 2281480192 --> 135.252.160.0
$mask = inet_ntoa(pack "N", $mask); # 4294966784 --> 255.255.254.0
#print "Netnet\nMaskmask\n";

  }
  if ($devinfo{$dev} =~/Intel/){
$good_dev=$dev;
return $good_dev;
}
# print "show : $dev : $devinfo{$dev}\n";


  }


}

my $interface=&got_a_dev();
print "get:".$interface."\n";

my $err = '';
my $pcap = Net:cap:pen_live(
                $interface,1600,1,0,\$err
   ) or die "loop1: $!\n" ;
   
   
Net:cap::loop($pcap, 10, \&callback, "user_data" or die "loop2: $!\n";
  
sub callback {
            my ($user_data, $header, $packet) = @_;
            print $header."\n";
        }

shaneqi

怎么还有笑脸，看着太费劲啊。

cobrawgl

use Net::Pcap; use strict; use Socket; sub got_a_dev{ my $err = ''; my $net = ''; my $mask = ''; my %devinfo; my $good_dev=''; #获得所有的设备 my @devs = Net::Pcap::pcap_findalldevs(\%devinfo, \$err); print "The number of devices: ",$#devs+1,"\n"; for my $dev (@devs) { #Net::Pcap::lookupnet function for finding which network is attached to a particular device. if ( (Net::Pcap::lookupnet($dev, \$net, \$mask, \$err) ) == -1 ) {    die "Net::Pcap::lookupnet failed. Error was $err"; } else{ $net = inet_ntoa(pack "N", $net); # 2281480192 --> 135.252.160.0 $mask = inet_ntoa(pack "N", $mask); # 4294966784 --> 255.255.254.0 #print "Net:$net\nMask:$mask\n";   }   if ($devinfo{$dev} =~/Intel/){ $good_dev=$dev; return $good_dev; } # print "show : $dev : $devinfo{$dev}\n";   } } my $interface=&got_a_dev(); print "get:".$interface."\n"; my $err = ''; my $pcap = Net::Pcap::open_live(                 $interface,1600,1,0,\$err    ) or die "loop1: $!\n" ;         Net::Pcap::loop($pcap, 10, \&callback, "user_data") or die "loop2: $!\n";    sub callback {             my ($user_data, $header, $packet) = @_;             print $header."\n";         }

抓包的时候Net::Pcap::loop函数会提示一个bad file descriptor错误....在线等待大大,,,感谢~~哈哈

ynchnluiti

好人。
我的Net::Pcap不赞成pcap_findalldevs

[ 本帖最后由 ynchnluiti 于 2009-2-12 12:56 编辑 ]

yangchaohi

楼上的是说用pcap_lookupdev(\$err)吗?

yangchaohi

我发过哈...晕倒 use Net:cap; use strict; use Socket; sub got_a_dev{ my $err = ''; my $net = ''; my $mask = ''; my %devinfo; my $good_dev=''; #获得所有的设备 my @devs = Net:cap::pcap_findalldevs(\%devinfo, \$err); print "The number of devices: ",$#devs+1,"\n"; for my $dev (@devs) { #Net:cap::lookupnet function for finding which network is attached to a particular device. if ( (Net:cap::lookupnet($dev, \$net, \$mask, \$err) ) == -1 ) {    die "Net:cap::lookupnet failed. Error was $err"; } else{ $net = inet_ntoa(pack "N", $net); # 2281480192 --> 135.252.160.0 $mask = inet_ntoa(pack "N", $mask); # 4294966784 --> 255.255.254.0 #print "Netnet\nMaskmask\n";   }   if ($devinfo{$dev} =~/Intel/){ $good_dev=$dev; return $good_dev; } # print "show : $dev : $devinfo{$dev}\n";   } } my $interface=&got_a_dev(); print "get:".$interface."\n"; my $err = ''; my $pcap = Net:cap:pen_live(                 $interface,1600,1,0,\$err    ) or die "loop1: $!\n" ;         Net:cap::loop($pcap, 10, \&callback, "user_data" or die "loop2: $!\n";    sub callback {             my ($user_data, $header, $packet) = @_;             print $header."\n";         }

yangchaohi

怎么搞成4楼那样有颜色啊?

ynchnluiti

原帖由 yangchaohi 于 2009-2-12 13:20 发表
怎么搞成4楼那样有颜色啊?

编辑帖子时，工具栏里有个图标（c++，鼠标放上去有提示)插入程序代码。弹出窗口：选择perl，贴上代码。

yangchaohi

3q