dongpao2871
dongpao2871
2014-01-23 22:05

Golang的原始套接字嗅探

已采纳

I have a question concerning tcp packet sniffing with golang. We have written a small tool which captures all incoming TCP packets comming from a fibre Tap.

The current implementation uses a libpcap wrapper under Linux. We need to port this tool to Windows. Of course, it is not possible at the moment.

So my question is, is there a cross platform solution for sniffing packets? We only need TCP packets, IP headers , no Ethernet Data and not all features of libpcap.

If there is no cross platform solution, two Code implementation would be ok, too. I know one can use raw sockets under Linux (and with some limitations under Windows). Does Golang support raw sockets and is there an example implementation for sniffing packets with sockets?

Tanks!! :-)

  • 点赞
  • 写回答
  • 关注问题
  • 收藏
  • 复制链接分享
  • 邀请回答

2条回答

  • douyan8267 douyan8267 7年前

    You should be able to use the ipv4 package from go.net.

    Package ipv4 implements IP-level socket options for the Internet Protocol version 4.

    The ipv4.RawConn type and it's associated methods should work cross-platform.

    A RawConn represents a packet network endpoint that uses the IPv4 transport. It is used to control several IP-level socket options including IPv4 header manipulation. It also provides datagram based network I/O methods specific to the IPv4 and higher layer protocols that handle IPv4 datagram directly such as OSPF, GRE.

    There is also an equivalent package for ipv6.

    点赞 评论 复制链接分享
  • doujingya1166 doujingya1166 7年前

    Take a look at https://code.google.com/p/gopacket/ since it supports pcap (requires cgo for this) and can decode a number of protocols including tcp/ip.

    点赞 评论 复制链接分享

为你推荐