anything else. Best to do this on a box that does native BPF, though
(asn an example SunOS does not do BPF and NIT can't handle the traffic
without dropping most stuff).
BPF support for SunOS has been avaialable for years.
At the present time, it is distributed as part of the ipmulti
distribution (ftp://ftp.parc.xerox.com:/pub/net-research/ipmulti), and
I believe that the LBL bpf distribution includes SunOS kernel .o files
(ftp://ftp.ee.lbl.gov:/bpf.tar.Z).
--jhawk