Wireshark · Ethereal-users: [Ethereal-users] Separating packet dump into TCP streams

Ethereal-users: [Ethereal-users] Separating packet dump into TCP streams

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: "Jesus M. Salvo Jr." <jsalvo@xxxxxxxxxxxxxxxxx>

Date: Tue, 31 Oct 2000 09:39:06 +1100

I have found the "Follow TCP Stream" to be very useful so that I can see
the delta time between packets in that stream instead of delta time
between packets which may not be related.

I am only monitoring HTTPS connections between 2 machines, and the
number of packets going back and forth are consistent, as I am repeating
the same request several times.


1) Is there anyway that, from a given packet dump file, I can create
several other packet dump files such that each dump file represents one
TCP stream? I am looking through the filter expressions but I cant see
anything that sort of relates to what I want to do.

2) .. and then I would like to determine the min,max,average delta time
between packets in all the TCP streams?


Thanks,

John Salvo

Follow-Ups:
- Re: [Ethereal-users] Separating packet dump into TCP streams
  - From: Guy Harris

Prev by Date: Re: [Ethereal-users] Bus error on solaris 5.7 (ethereal 0.8.13)
Next by Date: Re: [Ethereal-users] dissecting SSL
Previous by thread: Re: [Ethereal-users] Tethereal compile
Next by thread: Re: [Ethereal-users] Separating packet dump into TCP streams
Index(es):
- Date
- Thread