Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [packet-analyzer]

42 questions
3
votes
3 answers

What's the best way to track Jitter and Packetloss

I need to track Jitter and Packet Loss over a MPLS line. What's the most accurate way to capture this information without interfering with the data being sent back and forth? Is SmokePing the best tool for the job or is there something better?
Noah Campbell
  • 599
  • 2
  • 8
  • 15
3
votes
1 answer

Confusion about TCP packet analysis terms

I'm analyzing our network and have some confusion about the terms: this is the 2-packet output from source to destination. from these i have to get some features as describe, pls make me clear... packets with at least a bytes of TCP data payload:…
Berkay
  • 431
  • 4
  • 17
3
votes
1 answer

Tool for graphing packet size distribution on Linux?

Is there a tool for Linux to easily produce graphs (histograms) of the packet sizes (e.g. TCP) of network traffic ? (before I start putting together something using e.g. matplotlib and python bindings for libpcap, I'd better ask here...)
Andre Holzner
  • 529
  • 2
  • 4
  • 14
2
votes
3 answers

Can Wireshark capture an entire Ethernet frame including preamble, CRC and Interframe spacing?

I am examining an Ethernet frame in Wireshark. According to the "Ethernet frame" Wikipedia article and accompanying diagrams, "A frame starts with a 7-octet preamble and 1-octet start frame delimiter (SFD)." The article also highlights that "[the]…
synack
  • 23
  • 1
  • 1
  • 4
2
votes
1 answer

What's a good proxy/tool to dynamically change the content of packets(TCP/UDP)

I am not sure if such tool exists, but I want to dynamically modify certain packets sent using my wireless network. More specifically, I want to modify packets sent from multiple machines (including phones), and possibly inject additional packets.…
Tony Stark
  • 121
  • 2
1
vote
1 answer

How to capture network packets that use SS7 protocol using Wireshark?

Since SS7 protocol stack is used in GSM mobile telephony network, we can't get the packets of SS7 protocols using Wireshark in Windows Computer and browsing in a web browser like Google chrome. So how can one get packets which have SS7 protocol in…
Jesss
  • 23
  • 1
  • 4
1
vote
1 answer

Need help in understanding the packet analysis(wireshark)

The snapshot capture below contains a single HTTP request to a web server, in which the client web browser requests some files from server, and the server returns an HTTP/1.1 200 (OK) response which includes the file requested: Here is what I…
List 25
  • 21
  • 1
  • 5
1
vote
1 answer

Is there a quick way to determine what applications are present within a Wireshark capture? If so how

Is there a quick way to determine what applications are present within a Wireshark capture? If so how As most captures contain over 10 thousand lines, I can't expect people would by hand check which ports have been utilised and the applications…
Usage
  • 11
  • 2
1
vote
1 answer

What is the best way/tool to analyze raw data(network stats) from Simulation?

After running a simulation(using a simulator(QualNet)) of a simulated network I end up with ip stats stored in a database, I then extract the data to a csv file So now I have 750mb of raw network stats(time stamp, packet id, source ip, source port,…
user90500
  • 111
  • 3
1
vote
0 answers

How to add TDS support to tshark?

How to add TDS (knowledge about MS SQL Server packets' structure) support for tshark? Currently, the situation is this: root@DEV:/# tshark -d . 2>&1| grep -i tds root@DEV:/# I.e: tshark does not recognize tds protocol.
Henno
  • 1,046
  • 5
  • 19
  • 33
1
vote
1 answer

Transparent Bridge on Windows XP

Bascially i need to set up a configuration like the following: http://wiki.wireshark.org/CaptureSetup/Ethernet#Capture_using_a_machine-in-the-middle I have a computer with windows XP and 2 nics. I dont have a clue on how to set it up though, most of…
Luis
  • 21
  • 7
1
vote
2 answers

few questions on packet sniffer/analyzer

I have few questions about packet sniffer. I'm using a zyxel p-600 series modem and a hub to distribute the internet connection. Can I use a packet sniffer here to determine if the user is downloading something? Can I determine if the user is…
Wern Ancheta
  • 125
  • 1
  • 7
1
vote
3 answers

Ntop monitoring - Hosts visible with no SPAN/mirroring

I am attempting to use ntop to monitor traffic over a Cisco Catalyst switch. I was assuming that in order to see any of the traffic, I'd have to use monitor, as described here:…
Cory J
  • 1,528
  • 4
  • 19
  • 28
0
votes
2 answers

Analyzing HTTP traffic

I am trying to solve the problem for a while and i couldn't find a proper answer online. I have a file with mobile traffic (from an Android device) and I am trying to check whether an http request is sent from the browser or from a mobile app (for…
kobibo
  • 101
0
votes
0 answers

In the output of Chaosreader, where are the source and destination port numbers and IP addresses for each packet?

I used this tutorial to use Chaosreader on an output file of WinDump. My purpose was to get the HTTP payload, which I got. But I'd also like to extract other information, like source IP and destination IP, source port and destination port, for each…
Jesss
  • 23
  • 1
  • 4
1
2
3