this is a long-shot
(it doesnt show up on capture interfaces list)
but..
is there any way to capture Unix sockets or FIFOs ?
if not, is it reasonable to write a small program to
open such for reading, and echo stuff to UDP packets ?
Id like to get a look at the ORBit traffic carried for
GNOME desktop (conversely - how to force traffic to inet - lo)
X server,
maybe even /dev/log
[jimc@harpo jimc]$ netstat -x
Active UNIX domain sockets (w/o servers)
Proto RefCnt Flags Type State I-Node Path
unix 13 [ ] DGRAM 1092 /dev/log
unix 3 [ ] STREAM CONNECTED 817033 /tmp/.X11-unix/X0
unix 3 [ ] STREAM CONNECTED 817032
unix 3 [ ] STREAM CONNECTED 767608
unix 3 [ ] STREAM CONNECTED 767607
unix 3 [ ] STREAM CONNECTED 767606
unix 3 [ ] STREAM CONNECTED 767605
unix 3 [ ] STREAM CONNECTED 767584
/tmp/orbit-jimc/orb-125031957166962415
unix 3 [ ] STREAM CONNECTED 767582
unix 3 [ ] STREAM CONNECTED 767563 /tmp/.ICE-unix/1492
unix 3 [ ] STREAM CONNECTED 767560
unix 3 [ ] STREAM CONNECTED 767549 /tmp/.X11-unix/X0
unix 3 [ ] STREAM CONNECTED 767548
unix 3 [ ] STREAM CONNECTED 2481 /tmp/.X11-unix/X0
unix 3 [ ] STREAM CONNECTED 2480
unix 3 [ ] STREAM CONNECTED 2394
/tmp/orbit-jimc/orb-134996892807976803
unix 3 [ ] STREAM CONNECTED 2386
unix 3 [ ] STREAM CONNECTED 2378
/tmp/orbit-jimc/orb-2038798041356295581
unix 3 [ ] STREAM CONNECTED 2376
unix 3 [ ] STREAM CONNECTED 2371
/tmp/orbit-jimc/orb-300526619460797694
unix 3 [ ] STREAM CONNECTED 2370
unix 3 [ ] STREAM CONNECTED 2367
/tmp/orbit-jimc/orb-300526619460797694
unix 3 [ ] STREAM CONNECTED 2366
OT - (private emails accepted :)
I assume that in above listing, inodes 2367 and 2366 are the 2 endpoints
on a named pipe (FIFO)
would I be correct (or close) ?
also, why is named end inode greater than un-named (usually +1, but not
always) ?
tia,
jimc
