[179264] in North American Network Operators' Group
Re: lotsa pcap reporting
daemon@ATHENA.MIT.EDU (John Mason Jr)
Sun Apr 5 10:45:01 2015
X-Original-To: nanog@nanog.org
From: John Mason Jr <john.mason.jr@gmail.com>
In-Reply-To: <55214129.5000501@ip-solutions.net>
Date: Sun, 5 Apr 2015 10:44:56 -0400
To: NANOG <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
http://www.riverbed.com/products/performance-management-control/network-perf=
ormance-management/packet-analysis.html#Overview
> On Apr 5, 2015, at 10:05 AM, Harry Hoffman <hhoffman@ip-solutions.net> wro=
te:
>=20
> So, NTop or Afterglow might be a good start. They are both user-friendly
> tools that can ingest pcap files and output all sorts of pretty things.
>=20
> Cheers,
> Harry
>=20
>=20
>=20
>> On 04/05/2015 09:36 AM, Hank Disuko wrote:
>> Thanks for the response, Harry.
>>=20
>> the basic stuff that managers are interested in seeing:
>>=20
>> - yes what you said
>> - who or what is taking up all my precious network bandwidth
>> - colourful 3D pie charts
>>=20
>> Kind regards,
>>=20
>> Hank
>>=20
>>> Date: Sun, 5 Apr 2015 09:30:03 -0400
>>> Subject: Re: lotsa pcap reporting
>>> From: hhoffman@ip-solutions.net
>>> To: gourmetcisco@hotmail.com
>>> CC: nanog@nanog.org
>>>=20
>>> Hmm, maybe start with defining what you want to report about?
>>>=20
>>> Top talkers, top protocols/ports, open services, DNS info,
>> reconstructed files, etc...
>>>=20
>>> Lots of different tools but it depends on what you want to do.
>>>=20
>>> Cheers,
>>> Harry
>>>=20
>>>=20
>>>=20
>>>> On Apr 5, 2015 9:16 AM, Hank Disuko <gourmetcisco@hotmail.com> wrote:
>>>>=20
>>>> hi nanog folks,
>>>> i have 7GB of darn pcap data separated into individual 50MB files.
>> Collected via Wireshark.
>>>> i need a tool that can slurp in all this data and regurgitate
>> pretty, colourful and management-friendly reports. Windows or Linux.
>>>> any suggestions?
>>>> thanks,
>>>> Hank =20
