我在客户端/服务器之间生成了一些通信,并使用 tcpdump 捕获了数据包。现在我想分析这些数据包以测量延迟和一些其他信息,例如任何数据包丢失或确认丢失。有什么办法可以做到这一点吗?我试图用 perl 编写脚本来分析它。有一个 Perl 实现调用 net::tcpdump。但文档不是很详细。我不知道如何提取时间戳。
任何想法将不胜感激。
I generated some communications between client/server and captured the packets using tcpdump. Now I want to analyze those packets to measure latencies and some other information, like any packet lost or acks lost. Is there any way to do this. I was trying to write scripts in perl to analyze it. There is a perl implementation call net::tcpdump. But the documentation is not very detailed. I don't event know how to extract the time stamps.
Any idea would be appreciated.
发布评论
评论(2)
如果你愿意切换到Python,我发现 impacket 对于编写一些自定义 .pcap 分析脚本很有用。 tcptrace 工具还具有 Wireshark 中不具备的一些分析功能
If you are willing to switch to Python, I have found impacket useful for writing some custom .pcap analysis scripts. The tcptrace tool also has some analysis features not available in Wireshark
Wireshark 有一些数据包统计工具 - 并且可以读取 tcpdump 生成的捕获文件。
Wireshark has some packet statistical tools - and can read the capture files produced by tcpdump.