there is a tool called "snoop" that i use under solaris which allows me 
to monitor traffic in real-time between source and destination 
addresses.  i know tcpdump works well under linux, but i'm not getting 
exactly what i want out of it.  all i need is something that will give 
me source and destination ip addresses, port, protocol and packet size. 
 is tcpdump capable of this or, more preferably, has anyone ever seen a 
linux build of snoop?