Hi there sorry about my ignorance,reading the NETWORK dtrace provider i tried
some oneliners scripts,
but i think is not working on my System
$name -a=SunOS opensolaris 5.11 snv_101b i86pc i386 i86pc Solaris
dtrace -n ''tcp:::receive { @[args[2]->ip_saddr] = count();
}''
running this command i do not have any response, as
dtrace: invalid probe specifier tcp:::receive { @[args[2]->ip_saddr] =
count(); }: probe description tcp:::receive does not match any probes
any clue?
--
This message posted from opensolaris.org
On Tue, May 12, 2009 at 8:44 AM, vattini giacomo <hazzino at gmail.com> wrote:> Hi there sorry about my ignorance,reading the NETWORK dtrace provider i tried some oneliners scripts, > but i think is not working on my System > $name -a=SunOS opensolaris 5.11 snv_101b i86pc i386 i86pc Solaris > dtrace -n ''tcp:::receive { @[args[2]->ip_saddr] = count(); }'' > running this command i do not have any response, as > dtrace: invalid probe specifier tcp:::receive { @[args[2]->ip_saddr] = count(); }: probe description tcp:::receive does not match any probes > any clue?The provider is ''ip'', not ''tcp''. You can use ''dtrace -l'' to see what probes exist on your system, like this: # dtrace -ln ''ip:::'' ID PROVIDER MODULE FUNCTION NAME 3080 ip ip ip_wput_local_v6 receive 3081 ip ip ip_rput_v6 receive 3082 ip ip ip_wput_local receive 3083 ip ip ip_input receive 3105 ip ip ip_inject_impl send 3106 ip ip udp_xmit send 3107 ip ip tcp_lsosend_data send 3108 ip ip tcp_multisend send 3109 ip ip tcp_send_data send 3110 ip ip ip_multicast_loopback send 3111 ip ip ip_xmit_v6 send 3112 ip ip ip_wput_ire_v6 send 3113 ip ip ip_xmit_v4 send 3114 ip ip ip_wput_ipsec_out send 3115 ip ip ip_wput_ipsec_out_v6 send 3116 ip ip ip_wput_frag send 3117 ip ip ip_wput_frag_mdt send 3118 ip ip ip_wput_ire send 3119 ip ip ip_fast_forward send # dtrace -ln ''tcp:::'' ID PROVIDER MODULE FUNCTION NAME dtrace: failed to match tcp:::: No probe matches description # Chad
krishnan parthasarathi - Sun Microsystems - Bangalore India
2009-May-12 13:12 UTC
[dtrace-discuss] TCP provider
Hi Vattini, I don''t think such a probe is available. You could probably tell us what you are intending to do. Regards, Krishnan On Tue, 2009-05-12 at 05:44 -0700, vattini giacomo wrote:> Hi there sorry about my ignorance,reading the NETWORK dtrace provider i tried some oneliners scripts, > but i think is not working on my System > $name -a=SunOS opensolaris 5.11 snv_101b i86pc i386 i86pc Solaris > dtrace -n ''tcp:::receive { @[args[2]->ip_saddr] = count(); }'' > running this command i do not have any response, as > dtrace: invalid probe specifier tcp:::receive { @[args[2]->ip_saddr] = count(); }: probe description tcp:::receive does not match any probes > any clue?
vattini giacomo writes:> Hi there sorry about my ignorance,reading the NETWORK dtrace provider i tried some oneliners scripts, > but i think is not working on my System > $name -a=SunOS opensolaris 5.11 snv_101b i86pc i386 i86pc Solaris > dtrace -n ''tcp:::receive { @[args[2]->ip_saddr] = count(); }'' > running this command i do not have any response, as > dtrace: invalid probe specifier tcp:::receive { @[args[2]->ip_saddr] = count(); }: probe description tcp:::receive does not match any probes > any clue?It''s a little tough, but this will do roughly the same job: dtrace -n ''ip:::receive/args[2]->ip_ver==4&&args[4]->ipv4_protocol==6/ { @[args[2]->ip_saddr] = count(); }'' You might also want to look at the tcp-trace-* sdts; see /usr/demo/dtrace/tcprst.d. -- James Carlson, Solaris Networking <james.d.carlson at sun.com> Sun Microsystems / 35 Network Drive 71.232W Vox +1 781 442 2084 MS UBUR02-212 / Burlington MA 01803-2757 42.496N Fax +1 781 442 1677
Thanks guy for answer me back,It''s quite a few time that i''m studying,networking TCP/IP,i''m not working on the net field but i see a lot of similarities with our immune system,i''m in the medical field; so i''m tryng to understand how is really working the TCP/IP protocol,i''m tryng tcpdump snoop scapy to analyze the pockets in its internals,and how tunneling are setup. So when i came across the dtrace network provider, i thought that could be a step forward to my knowledge,but ...... Could you give me some more indication...... -- This message posted from opensolaris.org
krishnan parthasarathi - Sun Microsystems - Bangalore India
2009-May-13 08:22 UTC
[dtrace-discuss] TCP provider
Hi vattini, To begin with you can start by downloading Dtrace Toolkit(DTT) from the following page, http://www.opensolaris.org/os/community/dtrace/dtracetoolkit/ This is actually a collection of dtrace scripts embedded onto shell scripts to give a neat processed output. Each script file has good amount of comments to give an idea of what it is supposed to do. Once you untar the tarball of the DTT you must go into the "Net" directory to see tcp specific Dtrace scripts. Regards, Krishnan On Wed, 2009-05-13 at 00:50 -0700, vattini giacomo wrote:> Thanks guy for answer me back,It''s quite a few time that i''m studying,networking TCP/IP,i''m not working on the net field but i see a lot of similarities with our immune system,i''m in the medical field; > so i''m tryng to understand how is really working the TCP/IP protocol,i''m tryng tcpdump snoop scapy > to analyze the pockets in its internals,and how tunneling are setup. > So when i came across the dtrace network provider, i thought that could be a step forward to my knowledge,but ...... > Could you give me some more indication......
Sorry but i''m encountering this annoying problem $pfexec ./tcpsnoop dtrace: failed to compile script /dev/fd/3: line 173: failed to resolve : Unknown variable name $pfexec ./tcpsnoop.d dtrace: failed to compile script ./tcpsnoop.d: line 210: failed to resolve `tcp_g_q: Unknown symbol name thank you -- This message posted from opensolaris.org