diff options
author | Theo de Raadt <deraadt@cvs.openbsd.org> | 2001-08-22 16:15:01 +0000 |
---|---|---|
committer | Theo de Raadt <deraadt@cvs.openbsd.org> | 2001-08-22 16:15:01 +0000 |
commit | 162807ded75ef98cea12740164f48580d7587789 (patch) | |
tree | bfeac91eb82b521388d8c183630ac7c12e154527 /sbin/pflogd | |
parent | 6a9c746ebaec9cf302127fcb4db0734d5b9ef7e4 (diff) |
clarify tcpdump use; frantzen
Diffstat (limited to 'sbin/pflogd')
-rw-r--r-- | sbin/pflogd/pflogd.8 | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/sbin/pflogd/pflogd.8 b/sbin/pflogd/pflogd.8 index 83e1fa30f92..a39bd778258 100644 --- a/sbin/pflogd/pflogd.8 +++ b/sbin/pflogd/pflogd.8 @@ -1,4 +1,4 @@ -.\" $OpenBSD: pflogd.8,v 1.1 2001/08/21 22:29:14 deraadt Exp $ +.\" $OpenBSD: pflogd.8,v 1.2 2001/08/22 16:15:00 deraadt Exp $ .\" .\" Copyright (c) 2001 Can Erkin Acar. All rights reserved. .\" @@ -52,6 +52,8 @@ binary format. These logs can be reviewed later using the .Ar -r option of +.Xr tcpdump 8 , hopefully offline in case there are bugs in the packet +parsing code of .Xr tcpdump 8 . .Pp .Nm @@ -93,6 +95,7 @@ Analyze at most the first bytes of data from each packet rather than the default of 96. The default of 96 is adequate for IP, ICMP, TCP, and UDP headers but may truncate protocol information for other protocols. +Other file parsers may desire a higher snaplen. .It Ar expression selects which packets will be dumped, using the regular language of .Xr tcpdump 8 . |