hi nanog folks,
i have 7GB of darn pcap data separated into individual 50MB files. Collected via Wireshark.
i need a tool that can slurp in all this data and regurgitate pretty, colourful and management-friendly reports. Windows or Linux.
any suggestions?
thanks,
Hank
Hmm, maybe start with defining what you want to report about?
Top talkers, top protocols/ports, open services, DNS info, reconstructed files, etc...
Lots of different tools but it depends on what you want to do.
Cheers,
Harry
Thanks for the response, Harry.
the basic stuff that managers are interested in seeing:
- yes what you said- who or what is taking up all my precious network bandwidth- colourful 3D pie charts
Kind regards,
Hank
So, NTop or Afterglow might be a good start. They are both user-friendly
tools that can ingest pcap files and output all sorts of pretty things.
Cheers,
Harry
This is fantastic.
Thank-you everyone for your input. I have a busy day of software evaluation ahead of me.
Thanks again!
Hank