HPE Community
Operating System - Linux
1753765 Members
6064 Online
108799 Solutions
New Discussion юеВ

tool to read tcpdump.out

 
SOLVED
Go to solution
skt_skt
Honored Contributor

тАО08-22-2008 07:39 AM

тАО08-22-2008 07:39 AM

tool to read tcpdump.out


2.6.9-67.0.1.ELsmp
Red Hat Enterprise Linux AS release 4 (Nahant Update 5)

# file tcpdump.out
tcpdump.out: tcpdump capture file (little-endian) - version 2.4 (Linux "cooked", capture length 96)

i want to know of the best tool which can be used to analyse the dump either from the host itself? Or any tool which can be insatalled on windows(XP) and read the linux dump.

0 Kudos
Reply
7 REPLIES 7
Court Campbell
Honored Contributor

тАО08-22-2008 07:47 AM

тАО08-22-2008 07:47 AM

Solution

Re: tool to read tcpdump.out

ethereal
"The difference between me and you? I will read the man page." and "Respect the hat." and "You could just do a search on ITRC, you don't need to start a thread on a topic that's been answered 100 times already." Oh, and "What. no points???"
Reply
Heironimus
Honored Contributor

тАО08-22-2008 07:49 AM

тАО08-22-2008 07:49 AM

Re: tool to read tcpdump.out

I usually use wireshark to read tcpdump/pcap files.
0 Kudos
Reply
Court Campbell
Honored Contributor

тАО08-22-2008 07:59 AM

тАО08-22-2008 07:59 AM

Re: tool to read tcpdump.out

before you get confused wireshark is ethereal. I just still call it ethereal.
"The difference between me and you? I will read the man page." and "Respect the hat." and "You could just do a search on ITRC, you don't need to start a thread on a topic that's been answered 100 times already." Oh, and "What. no points???"
0 Kudos
Reply
skt_skt
Honored Contributor

тАО08-22-2008 10:25 AM

тАО08-22-2008 10:25 AM

Re: tool to read tcpdump.out

i ahve the ethreal NPA on pc. Any one know of any better one
0 Kudos
Reply
Court Campbell
Honored Contributor

тАО08-22-2008 12:04 PM

тАО08-22-2008 12:04 PM

Re: tool to read tcpdump.out

Sorry, just curios. What is NPA? I am not familair with that acronym in relation to ethereal. I am sure I will feel stupid after you tell me.
"The difference between me and you? I will read the man page." and "Respect the hat." and "You could just do a search on ITRC, you don't need to start a thread on a topic that's been answered 100 times already." Oh, and "What. no points???"
0 Kudos
Reply
skt_skt
Honored Contributor

тАО08-25-2008 09:50 AM

тАО08-25-2008 09:50 AM

Re: tool to read tcpdump.out

really??

Network protocol analyzer
0 Kudos
Reply
Court Campbell
Honored Contributor

тАО08-25-2008 11:50 AM

тАО08-25-2008 11:50 AM

Re: tool to read tcpdump.out

Yep. I thought is was Network Professional Association. There are too many acronyms in our line of work. Plus the fact that the same acronym can have quite a few meanings.
"The difference between me and you? I will read the man page." and "Respect the hat." and "You could just do a search on ITRC, you don't need to start a thread on a topic that's been answered 100 times already." Oh, and "What. no points???"
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.