How to capture packets that match a particular route?

Hi -
I need to capture data packets that match a particular
route. I know how to do this in Linux, so I've mentioned
that below. I'd appreciate if the Windows experts tell
how to do the same in Windows XP(SP1).

Thanks,
Anand

In Linux:
--------
1. Create a "tunnel" device
2. Make the tunnel device the outgoing interface of the
particular route
3. User space app. can now read the tunnel device and get
packets that match the particular route.

Example config for capturing packets that match the
default route:
#ifconfig tun
tun Link encap:Point-to-Point Protocol
inet addr:127.0.0.2 P-t-P:127.0.0.2
Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST
MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0
frame:0
TX packets:0 errors:0 dropped:0 overruns:0
carrier:0
collisions:0 txqueuelen:10
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

#route
Kernel IP routing table
Destination Gateway Genmask Flags
Metric Ref Use Iface
10.20.30.0 * 255.255.255.0 U
0 0 0 eth0
127.0.0.0 * 255.0.0.0 U
0 0 0 lo
default * 0.0.0.0 U
0 0 0 tun

in winxp that is called PPTP and you can read about it in help & support.

"Anand R" wrote in message
...
Hi -
I need to capture data packets that match a particular
route. I know how to do this in Linux, so I've mentioned
that below. I'd appreciate if the Windows experts tell
how to do the same in Windows XP(SP1).

Thanks,
Anand

In Linux:
--------
1. Create a "tunnel" device
2. Make the tunnel device the outgoing interface of the
particular route
3. User space app. can now read the tunnel device and get
packets that match the particular route.

Example config for capturing packets that match the
default route:
#ifconfig tun
tun Link encap:Point-to-Point Protocol
inet addr:127.0.0.2 P-t-P:127.0.0.2
Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST
MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0
frame:0
TX packets:0 errors:0 dropped:0 overruns:0
carrier:0
collisions:0 txqueuelen:10
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

#route
Kernel IP routing table
Destination Gateway Genmask Flags
Metric Ref Use Iface
10.20.30.0 * 255.255.255.0 U
0 0 0 eth0
127.0.0.0 * 255.0.0.0 U
0 0 0 lo
default * 0.0.0.0 U
0 0 0 tun



---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.484 / Virus Database: 282 - Release Date: 05/27/2003

Oops! PPTP = Point to Point Tunneling Protocol.

"Anand R" wrote in message
...
Hi -
I need to capture data packets that match a particular
route. I know how to do this in Linux, so I've mentioned
that below. I'd appreciate if the Windows experts tell
how to do the same in Windows XP(SP1).

Thanks,
Anand

In Linux:
--------
1. Create a "tunnel" device
2. Make the tunnel device the outgoing interface of the
particular route
3. User space app. can now read the tunnel device and get
packets that match the particular route.

Example config for capturing packets that match the
default route:
#ifconfig tun
tun Link encap:Point-to-Point Protocol
inet addr:127.0.0.2 P-t-P:127.0.0.2
Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST
MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0
frame:0
TX packets:0 errors:0 dropped:0 overruns:0
carrier:0
collisions:0 txqueuelen:10
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)

#route
Kernel IP routing table
Destination Gateway Genmask Flags
Metric Ref Use Iface
10.20.30.0 * 255.255.255.0 U
0 0 0 eth0
127.0.0.0 * 255.0.0.0 U
0 0 0 lo
default * 0.0.0.0 U
0 0 0 tun



---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.484 / Virus Database: 282 - Release Date: 05/27/2003