> law:~>tcpdump -i ppp0 icmp
> tcpdump: /dev/bpf0: No such file or directory
> 
> What do I need to do?

Rebuild your kernel and turn on the BPF stuff.
The Berkeley Packet filter is cool (and you need it if
you want to handle RARP and do diskless booting, not to mention
tcpdump).  tcpdump is even cooler.

I just ran across a set of books called TCP/IP illustrated by
Stevens, that use tcpdump as the hinge-pin of the books, i.e.
you are supposed to run tcpdump as an X-ray machine to see how
the protocols work.  All this is running far afield of the
original request, but tcpdump sounds like a fine way to look
at the ICMP packets coming from the offending ping.

	Tom
-- 
	Tom Trebisky			Steward Observatory
	ttrebisky@as.arizona.edu	University of Arizona
	(520) 621-5135			Tucson, Arizona 85721