2005/02/18 Ethereal
Ethereal is an open source network protocol analyzer. It can analyze live data or files from an amazing number of other applications (tcpdump, snoop, Cisco iplog etc.).
The list of protocols it groks just goes on and on - 658 when I just checked now. Runs on Linux, Unix and Windows.
One (of many) interesting features is the ability to reconstruct a tcp session in the order the application would have seen it (network bytes don't necessarily arrive in order; it's up to higher levels of the tcp stack to reconstruct them). It can also do helpful resolution translations for you: mac addresses to ip addresses, mac to manufacturer, ip addresses to dns, port numbers to names.
Free, extensible, powerful.
Got something to add? Send me email.
Increase ad revenue 50-250% with Ezoic
Inexpensive and informative Apple related e-books:
Take Control of iCloud
iOS 10: A Take Control Crash Course
Take Control of iCloud, Fifth Edition
Yosemite Crash Course
iOS 8: A Take Control Crash Course
More Articles by Tony Lawrence
Find me on Google+
© 2012-07-16 Tony Lawrence
Sat Feb 19 01:34:35 2005: 42 BigDumbDinosaur
"One (of many) interesting features is the ability to reconstruct a tcp session in the order the application would have seen it (network bytes don't necessarily arrive in order; it's up to higher levels of the tcp stack to reconstruct them)."
Slight clarification: the packets don't necessarily arrive in the order transmitted. Within any given packet, the bytes will be in proper order. Otherwise, the packet CRC will be invalid.
------------------------
Printer Friendly Version
Ethereal: Tech Words of the Day Copyright © February 2005 Tony Lawrence
Have you tried Searching this site?
Support RatesThis is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more.
Contact us
Printer Friendly Version