Live snoop analysis | Unix Linux Forums | Solaris

  Go Back    


Solaris The Solaris Operating System, usually known simply as Solaris, is a Unix-based operating system introduced by Sun Microsystems. The Solaris OS is now owned by Oracle.

Live snoop analysis

Solaris


Closed Thread    
 
Thread Tools Search this Thread Display Modes
    #1  
Old 01-26-2013
jojo123 jojo123 is offline
Registered User
 
Join Date: May 2009
Last Activity: 16 March 2014, 3:59 AM EDT
Posts: 69
Thanks: 0
Thanked 0 Times in 0 Posts
Wrench Live snoop analysis

Dears,

I am trying to run a bash script to take a snoop on an interface with a certain port for like 5 minute and once the snoop is finished I need to parse the snoop file on unix/solaris without using WIRESHARK or ETHERAL.

the snoop that I will capture will be for DIAMETER Protocol and what I will be looking for is the total number of CCR Send and total number of CCA recieved and other related information.

I can generate the script to a level of executing the script on partiular interface and close it but how to parse it with DIAMETER protocol on solaris this is what I am more intersted in.

---------- Post updated at 06:53 AM ---------- Previous update was at 06:26 AM ----------

Moderator's Comments:
Forum Rules: No Bumping Up Posts.... Please Read and Follow Forum Rules
Sponsored Links
    #2  
Old 01-26-2013
jlliagre jlliagre is offline Forum Advisor  
ɹǝsn sıɹɐlos
 
Join Date: Dec 2007
Last Activity: 23 August 2014, 4:12 AM EDT
Location: Paris
Posts: 4,406
Thanks: 15
Thanked 461 Times in 417 Posts
snoop doesn't parse the diameter protocol. While certainly doable with some shell scripting, that won't worth the effort given the fact wireshark already does it. Why are you ruling out wireshark ?
Sponsored Links
    #3  
Old 03-03-2013
jojo123 jojo123 is offline
Registered User
 
Join Date: May 2009
Last Activity: 16 March 2014, 3:59 AM EDT
Posts: 69
Thanks: 0
Thanked 0 Times in 0 Posts
Well whireshark can be run over windows I am more interested to take live snoop and analyse at bash level.

Any idea?
    #4  
Old 03-03-2013
Neo's Avatar
Neo Neo is online now Forum Staff  
Administrator
 
Join Date: Sep 2000
Last Activity: 23 August 2014, 5:17 AM EDT
Location: Asia pacific region
Posts: 13,016
Thanks: 518
Thanked 871 Times in 398 Posts
Sounds pretty easy... capture data and parse data ... .what's the problem?
Sponsored Links
    #5  
Old 03-03-2013
jlliagre jlliagre is offline Forum Advisor  
ɹǝsn sıɹɐlos
 
Join Date: Dec 2007
Last Activity: 23 August 2014, 4:12 AM EDT
Location: Paris
Posts: 4,406
Thanks: 15
Thanked 461 Times in 417 Posts
Quote:
Originally Posted by jojo123 View Post
Well whireshark can be run ove windows I am more intrested to take live snoop and analyse at bash level.

Any idea
Wireshark has a CLI mode, tshark, if this is what you are looking for.
Sponsored Links
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
FTP Snoop Pouchie1 UNIX for Advanced & Expert Users 3 11-10-2009 01:08 PM
Snoop Script tafil Shell Programming and Scripting 2 07-30-2008 02:24 AM
snoop command kurtolo Solaris 4 01-21-2008 07:55 AM
Snoop Functions mf_lattanzi Solaris 0 05-08-2006 10:17 AM
snoop equivalent pbonilla UNIX for Dummies Questions & Answers 2 04-22-2003 10:17 PM



All times are GMT -4. The time now is 05:27 AM.