In order for this tool to correctly parse the packet_monitor output, packet_monitor must be run with the following control arguments: Once the output is converted into a pcap format it can be read by any number of protocol analyzers - including but not limited to wireshark. The following perl script is my attempt to convert the packet_monitor output to something that the wireshark text2pcap tool can read. Following a specific TCP connection or tracing sequence numbers to locate retransmissions or missing segments has to be done manually. It has some filtering capability but only to control which packets to capture. It displays packets in a text format and while it will decode the Ethernet, ARP, IP and TCP/UDP/ICMP headers it displays the upper layer protocols as hex data. The packet_monitor tool is the packet capture and display tool that is part of the STCP product set for VOS. Convert packet_monitor output to a pcap file Convert packet_monitor output to a pcap file
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |