[61691] in North American Network Operators' Group
Re: Distributed sniffer products
daemon@ATHENA.MIT.EDU (George Bakos)
Wed Sep 3 14:28:14 2003
Date: Wed, 3 Sep 2003 14:21:22 -0400
From: George Bakos <gbakos@ists.dartmouth.edu>
To: "Austad, Jay" <JAustad@temgweb.com>
Cc: "'nanog@merit.edu'" <nanog@merit.edu>
In-Reply-To: <288FAF5565A1A74EA5E35C39E7EE1D420A1BDB2C@mail.temgweb.com>
Errors-To: owner-nanog-outgoing@merit.edu
A little off topic, but nonetheless:
Have a look at Ethereal, an open source network analyzer similar in many
respects to Sniffer Pro. http://www.ethereal.com
<plug shameless="yes">
For distributed sniffing / central analysis, you might want to try
IDABench, ISTS's pluggable framework for network packet analysis.
http://idabench.ists.dartmouth.edu. You can query large datasets with
various analysis tools and it returns graphical, textual, or libpcap
composite binary output that can be opened in, for instance, ethereal.
</plug>
On Wed, 3 Sep 2003 13:07:48 -0500
"Austad, Jay" <JAustad@temgweb.com> wrote:
>
> Anyone have any experience with these? I'm looking for something similar to
> Network Associates Sniffer product.
>
> Are there any open source projects that are decent? What are others using?
>
> ----------------
> Jay Austad
> Senior Network Analyst
> Travelers Express / MoneyGram
> e: jaustad@temgweb.com p: 952.591.3779
--
George Bakos
Institute for Security Technology Studies - IRIA
Dartmouth College
gbakos@ists.dartmouth.edu
603.646.0665 -voice
603.646.0666 -fax
