TCP Dump allows you to examine the header or content of each packet flowing over an interface or data link. To begin monitoring, select the desired interface from the "Monitor interface" popup and press "Start".
TCP Dump in IPNetMonitorX is a simple User Interface to the underlying unix "tcpdump" facility. Unix tcpdump has many options allowing you to specify in detail what packets you want to capture including protocols, interfaces, and link layer headers. The Options field accepts standard tcpdump options ("-n -p -t" for example to show numeric addresses, do not set promiscuous mode, and no time stamps).
Naturally you can run tcpdump directly from a terminal window if desired. The reason to incorporate TCP Dump in IPNetMonitorX is simple user convenience.
While TCP Dump is well suited to capturing packet headers and protocol information, it is less ideal for viewing the actual TCP data flow between a client and server. For this purpose, you can "Use TCP Flow" instead of TCP Dump. tcpflow is an open source utility distributed under GNU .
http://sustworks.com/site/prod_ipmx_help/html/TCPDumpHelp.html
tcpdump is used on platforms like ethereal by network professionals for troubleshooting, analysis, software and protocol development. It has all of the standard features you would expect in a protocol analyzer, and several features not seen in any other product. Its open source licence allows people in the networking community to add enhancements. It runs on all popular computing platforms, including Unix, Linux, and Windows.although the windows version is enhanced with ethereal modern day network analyzers like wireshark are more popular and have made it redundant.
abridged from-http://www.ethereal.com/
parisparfait.typepad.com
No comments:
Post a Comment