1. Oracle Solaris 11.4 DTrace (Dynamic Tracing) Guide
  2. DTrace Providers
  3. Network and Network Service Protocol Providers
  4. icmp Provider
  5. Using the ICMP Provider
  6. ICMP Packets by Process

ICMP Packets by Process

This DTrace one-liner counts ICMP sent/received packets by process:

# dtrace -n 'icmp:::send,icmp:::receive { @[args[1]->cs_pid] = count(); }'
dtrace: description 'icmp:::send,icmp:::receive ' matched 20 probes
^C

   100961                1
   100965                1
   100968                1

These represent 3 ICMP messages received in response to ping - U requests.