tcptrace-bugs parsing output

Date: 01/23/03

  • Next message: Jane Brooks: "tcptrace-bugs"

    Date: Thu, 23 Jan 2003 16:25:56 -0700
    Message-ID: <>
    Subject: tcptrace-bugs parsing output

    I am working on a script to parse the tcptrace output into a comma delimited
    format, so I can use it as an input for a data mining software.

    Here is the tcptrace command that I use:
    tcptrace -p -l -u --nocheck_hwdups -n - W tcpdumpfilename > tcptrace.out

    So, I basically print out almost everything. The problem is I need to know
    all possible output for each result field, e.g. what are the possible outputs
    for the field complete conn? At first, I thought it's only yes or no, but
    then I realized that there're also reset, and som further syn and ack total

    Is there any documentation that I can refer to complete my script? Or, is
    there any other tools that I can use to do it?
    Any inputs and comments are very welcome.



    This archive was generated by hypermail 2b30 : 01/24/03 EST