hi all
i want to extract few
connection level features (
not packet level )of the internet traffic through ethernet card interface
the features are as follows
Timestamp Timestamp of paket captured
Duration duration of connection
ip_proto IP protocol type
src_IP source IP address
Dest_IP Destination Address
service Type of service on it such as http telnet
icmp_type type of ICMP service running
src_bytes No of bytes from source
dest_bytes No of bytes from destination
Flags whether SYN flag was used or not
is there any tool for this
or can it be done through any script with tcpdump ?
thanks in advance
Moderator's Comments:
|
|
Double post, continued here, thread closed
|
|