Hello and Welcome from United States to the UNIX and Linux Forums! Thank You for Visiting and Joining Our Global Community.
|
Hello and Welcome from United States to the UNIX and Linux Forums! Thank You for Visiting and Joining Our Global Community.
|
|
google unix.com
|
|||||||
| Forums | Register | Forum Rules | Links | Albums | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
 |
| IP Networking Learn TCP/IP, Internet Protocol, Routing, Routers, Network protocols in this UNIX and Linux forum. |
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Read from a file then filter the output | khestoi | UNIX for Dummies Questions & Answers | 1 | 03-02-2009 05:00 AM |
| Wireshark 1.0.1 (Default branch) | iBot | Software Releases - RSS News | 0 | 07-01-2008 04:30 AM |
| S-041: Wireshark Security Update | iBot | Security Advisories (RSS) | 0 | 01-23-2008 02:50 PM |
| S-103: Wireshark Vulnerabilities | iBot | Security Advisories (RSS) | 0 | 01-04-2008 05:20 PM |
| Fedora 7 Update: wireshark-0.99.7-1.fc7 | iBot | Security Advisories (RSS) | 0 | 12-24-2007 12:30 AM |
Powered by 
|
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
06-05-2009
|
||||
|
||||
|
Filter wireshark output
Hi
I have a wireshark file saved (from my network) and I have to analyze the flows inside it. The problem is that i have to analyze not the complete file (60.000 pkts!) but just a subset of it. In other words i have to sample the wireshark.file.dump and for example from 60.000 pkts take randomly just 6.000 pkts. Wireshark allows you to select or mark same pkts but by hand!!!! (very long time) Is there any filter to build in order to take randomly just a part of the complete file? Or is there any other tool that can analize libpcap file and take a subset? thx in advance Dedalus |
| Bookmarks |
| Tags |
| packets, wireshark |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Threaded Mode
