Login or Register to Ask a Question and Join Our Community


IP Networking

Filter wireshark output

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums IP Networking Filter wireshark output
# 1  
Old 06-05-2009
Filter wireshark output
Hi

I have a wireshark file saved (from my network) and I have to analyze the flows inside it.
The problem is that i have to analyze not the complete file (60.000 pkts!) but just a subset of it.
In other words i have to sample the wireshark.file.dump and for example from 60.000 pkts take randomly just 6.000 pkts.
Wireshark allows you to select or mark same pkts but by hand!!!! (very long time)
Is there any filter to build in order to take randomly just a part of the complete file?
Or is there any other tool that can analize libpcap file and take a subset?

thx in advance

Dedalus
# 2  
Old 06-16-2009
alternatively u can write your own code for it using libcap library. Should not be that difficult. Do some research.
# 3  
Old 06-17-2009
Hi Neminath

your advice is what i'm trying to do. I'm near the end. I'm using a small software that sniff pkts and I've added a randon counter in its callback function, in order to analize some pkts and skip the others.
I'm still testing it but seems like work.
Thanks

D.
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Filter output in curl

Hello guys, I'm writing a little script which sends me sms with my shell script via api of a sms provider. problem is I can't filter my curl output for this site: site url:... (1 Reply)
Discussion started by: genius90
1 Replies

2. Shell Programming and Scripting

Use of awk to filter out the command output

Hi All, I am trying to find out number of cores present for hp-ux server from the output of print_manifest (as shown below). i suppose awk will be best tool to use for filtering. output of print_manifest is : System Hardware Model: ia64 hp Integrity Virtual Partition ... (6 Replies)
Discussion started by: omkar.jadhav
6 Replies

3. Shell Programming and Scripting

How the filter output?

Hey, I'm using some sensors that can be read by http. If I run following command: curl -v 'http://192.168.111.23:8080/sensor/52f5c63cc4221fbbedcb499908a0a823?version=1.0&interval=minute&unit=watt&callback=realtime' I'm getting: I would like to put this now in a sheet with only the... (9 Replies)
Discussion started by: brononius
9 Replies

4. UNIX for Advanced & Expert Users

Filter top -bc -n10 output

I have posted a thread in Unix for Dummies question...... https://www.unix.com/unix-dummies-questions-answers/223769-filter-top-bc-n10-output.html Can anybody help me out with this please? Thanks Avinash (3 Replies)
Discussion started by: avinthm
3 Replies

5. UNIX for Dummies Questions & Answers

Filter top -bc -n10 output

Hi "top -bc -n10" gives me the output of the "top" command 10 times. Now i dont want repeated results and hence want to return only the last output. And I would like to do it in one command and not in script. can you please help me out? Thanks (2 Replies)
Discussion started by: avinthm
2 Replies

6. Shell Programming and Scripting

Filter output as an array element

I am filtering the value of Server status from a file and am storing it in a temp file which I compare later to exit with appropriate status. I am wondering if I can directly output the value of Server status as an array element and then compare the value of elements to get the right exit status ... (2 Replies)
Discussion started by: paslas
2 Replies

7. Shell Programming and Scripting

Filter out output and then write to a file

I have a process which writes lots of output to the screen and am capturing it to a file. But the issue is that there are few lines which repeat every second which is causing the file size to be enormous. I am trying to filter out and then run the command but its not working. Can you confirm... (7 Replies)
Discussion started by: rajkumarme_1
7 Replies

8. Shell Programming and Scripting

How to filter only the last 'n' lines of a grep output?

I am running a grep query for searching a pattern, and the output is quite huge. I want only the last 200 lines to be displayed, and I am not sure if tail will do the trick (can tail read from std in/out instead of files?). Please help me out. (1 Reply)
Discussion started by: shell_newbie
1 Replies

9. Shell Programming and Scripting

Shell Script to Filter Output

Hi guys - I use this script below to search for files that are of todays date. It also informs if the file doesnt exist or is old. I am trying to make the script inform of the errors in the "begining" of the output email. Such as all errors are grouped together. I am using the following... (1 Reply)
Discussion started by: DallasT
1 Replies

10. UNIX for Dummies Questions & Answers

Read from a file then filter the output

Hi i need a script which reads a certain file and then display it on the screen. The thing is i need to filter the display output. this is an example of the file which is to be loaded in the script. asdfg1.1.1|98 hjkldfe4.0.3|123 asdzxzvdweradfsdafascv10.0.10|123456789... (1 Reply)
Discussion started by: khestoi
1 Replies
Login or Register to Ask a Question