[Guy Harris <guy@xxxxxxxxxx>]

> To use Ethereal to monitor 802.11 frames requires (at this time) a Linux 
> system running a utility called "Prismdump", to which links can be found on 
> the Ethereal site.  Prismdump will put a Prism-II based 802.11 card into 
> monitor mode and dump the received frames.

I think it might be useful to

	1) have the linux-wlan drivers provide a mechanism to let you
	   put them into monitor mode, as I think can be done with the
	   Aironet cards (I think there's a utility to do that);

	2) when the cards are in that mode, have them supply raw 802.11
	   packets as input, so that a PF_PACKET/SOCK_RAW socket will
	   see 802.11 packets, not fake 802.3 packets;

	3) supply an ARPHRD_ type of ARPHRD_IEEE80211 if the card is in
	   that mode.

That's what the "drivers/net/wireless/airo.c" driver does.

This allows you to capture raw 802.11 traffic *WITHOUT* using some
special utility - you can directly capture raw 802.11 traffic on Aironet
cards, with that driver, using Ethereal or the 3.7 beta version of
tcpdump! (Ethereal and tcpdump need to be linked with the 0.7 beta or
current CVS version of libpcap for that.)