1If you have not built libpcap, and your system does not have libpcap 2installed, install libpcap first. Your system might provide a version 3of libpcap that can be installed; if so, to compile tcpdump you might 4need to install a "developer" version of libpcap as well as the 5"run-time" version. You can also install tcpdump.org's version of 6libpcap; see the README file in this directory for the ftp location. 7 8You will need an ANSI C compiler to build tcpdump. The configure script 9will abort if your compiler is not ANSI compliant. If this happens, use 10the generally available GNU C compiler (GCC). 11 12After libpcap has been built (either install it with "make install" or 13make sure both the libpcap and tcpdump source trees are in the same 14directory), run ./configure (a shell script). "configure" will 15determine your system attributes and generate an appropriate Makefile 16from Makefile.in. Now build tcpdump by running "make". 17 18If everything builds ok, su and type "make install". This will install 19tcpdump and the manual entry. Any user will be able to use tcpdump to 20read saved captures. Whether a user will be able to capture traffic 21depends on the OS and the configuration of the system; see the tcpdump 22man page for details. DO NOT give untrusted users the ability to 23capture traffic. If a user can capture traffic, he or she could use 24utilities such as tcpdump to capture any traffic on your net, including 25passwords. 26 27Note that most systems ship tcpdump, but usually an older version. 28Remember to remove or rename the installed binary when upgrading. 29 30If your system is not one which we have tested tcpdump on, you may have 31to modify the configure script and Makefile.in. Please send us patches 32for any modifications you need to make. 33 34Please see "PLATFORMS" for notes about tested platforms. 35 36 37FILES 38----- 39CHANGES - description of differences between releases 40CONTRIBUTING - guidelines for contributing 41CREDITS - people that have helped tcpdump along 42INSTALL.txt - this file 43LICENSE - the license under which tcpdump is distributed 44Makefile.in - compilation rules (input to the configure script) 45README - description of distribution 46Readme.Win32 - notes on building tcpdump on Win32 systems (with WinPcap) 47VERSION - version of this release 48aclocal.m4 - autoconf macros 49addrtoname.c - address to hostname routines 50addrtoname.h - address to hostname definitions 51ah.h - IPSEC Authentication Header definitions 52appletalk.h - AppleTalk definitions 53ascii_strcasecmp.c - locale-independent case-independent string comparison 54 routines 55atime.awk - TCP ack awk script 56atm.h - ATM traffic type definitions 57bpf_dump.c - BPF program printing routines, in case libpcap doesn't 58 have them 59chdlc.h - Cisco HDLC definitions 60cpack.c - functions to extract packed data 61cpack.h - declarations of functions to extract packed data 62config.guess - autoconf support 63config.h.in - autoconf input 64config.sub - autoconf support 65configure - configure script (run this first) 66configure.in - configure script source 67ether.h - Ethernet definitions 68ethertype.h - Ethernet type value definitions 69extract.h - alignment definitions 70gmpls.c - GMPLS definitions 71gmpls.h - GMPLS declarations 72gmt2local.c - time conversion routines 73gmt2local.h - time conversion prototypes 74install-sh - BSD style install script 75interface.h - globals, prototypes and definitions 76ip.h - IP definitions 77ip6.h - IPv6 definitions 78ipproto.c - IP protocol type value-to-name table 79ipproto.h - IP protocol type value definitions 80l2vpn.c - L2VPN encapsulation value-to-name table 81l2vpn.h - L2VPN encapsulation definitions 82lbl/os-*.h - OS-dependent defines and prototypes 83llc.h - LLC definitions 84machdep.c - machine dependent routines 85machdep.h - machine dependent definitions 86makemib - mib to header script 87mib.h - mib definitions 88missing/* - replacements for missing library functions 89mkdep - construct Makefile dependency list 90mpls.h - MPLS definitions 91nameser.h - DNS definitions 92netdissect.h - definitions and declarations for tcpdump-as-library 93 (under development) 94nfs.h - Network File System V2 definitions 95nfsfh.h - Network File System file handle definitions 96nlpid.c - OSI NLPID value-to-name table 97nlpid.h - OSI NLPID definitions 98ospf.h - Open Shortest Path First definitions 99packetdat.awk - TCP chunk summary awk script 100parsenfsfh.c - Network File System file parser routines 101pcap_dump_ftell.c - pcap_dump_ftell() implementation, in case libpcap 102 doesn't have it 103pcap-missing.h - declarations of functions possibly missing from libpcap 104ppp.h - Point to Point Protocol definitions 105print.c - Top-level routines for protocol printing 106print-*.c - The netdissect printers 107rpc_auth.h - definitions for ONC RPC authentication 108rpc_msg.h - definitions for ONC RPC messages 109send-ack.awk - unidirectional tcp send/ack awk script 110setsignal.c - OS-independent signal routines 111setsignal.h - OS-independent signal prototypes 112slcompress.h - SLIP/PPP Van Jacobson compression (RFC1144) definitions 113smb.h - SMB/CIFS definitions 114smbutil.c - SMB/CIFS utility routines 115stime.awk - TCP send awk script 116tcp.h - TCP definitions 117tcpdump.1 - manual entry 118tcpdump.c - main program 119timeval-operations.h - timeval operations macros 120udp.h - UDP definitions 121util-print.c - utility routines for protocol printers 122vfprintf.c - emulation routine 123win32 - headers and routines for building on Win32 systems 124