hi nanog folks, i have 7GB of darn pcap data separated into individual 50MB files. Collected via Wireshark. i need a tool that can slurp in all this data and regurgitate pretty, colourful and management-friendly reports. Windows or Linux. any suggestions? thanks, Hank
Hmm, maybe start with defining what you want to report about? Top talkers, top protocols/ports, open services, DNS info, reconstructed files, etc... Lots of different tools but it depends on what you want to do. Cheers, Harry On Apr 5, 2015 9:16 AM, Hank Disuko <gourmetcisco@hotmail.com> wrote:
hi nanog folks, i have 7GB of darn pcap data separated into individual 50MB files. Collected via Wireshark. i need a tool that can slurp in all this data and regurgitate pretty, colourful and management-friendly reports. Windows or Linux. any suggestions? thanks, Hank
Thanks for the response, Harry. the basic stuff that managers are interested in seeing: - yes what you said- who or what is taking up all my precious network bandwidth- colourful 3D pie charts Kind regards, Hank
Date: Sun, 5 Apr 2015 09:30:03 -0400 Subject: Re: lotsa pcap reporting From: hhoffman@ip-solutions.net To: gourmetcisco@hotmail.com CC: nanog@nanog.org
Hmm, maybe start with defining what you want to report about?
Top talkers, top protocols/ports, open services, DNS info, reconstructed files, etc...
Lots of different tools but it depends on what you want to do.
Cheers, Harry
On Apr 5, 2015 9:16 AM, Hank Disuko <gourmetcisco@hotmail.com> wrote:
hi nanog folks, i have 7GB of darn pcap data separated into individual 50MB files. Collected via Wireshark. i need a tool that can slurp in all this data and regurgitate pretty, colourful and management-friendly reports. Windows or Linux. any suggestions? thanks, Hank
So, NTop or Afterglow might be a good start. They are both user-friendly tools that can ingest pcap files and output all sorts of pretty things. Cheers, Harry On 04/05/2015 09:36 AM, Hank Disuko wrote:
Thanks for the response, Harry.
the basic stuff that managers are interested in seeing:
- yes what you said - who or what is taking up all my precious network bandwidth - colourful 3D pie charts
Kind regards,
Hank
Date: Sun, 5 Apr 2015 09:30:03 -0400 Subject: Re: lotsa pcap reporting From: hhoffman@ip-solutions.net To: gourmetcisco@hotmail.com CC: nanog@nanog.org
Hmm, maybe start with defining what you want to report about?
Top talkers, top protocols/ports, open services, DNS info, reconstructed files, etc...
Lots of different tools but it depends on what you want to do.
Cheers, Harry
On Apr 5, 2015 9:16 AM, Hank Disuko <gourmetcisco@hotmail.com> wrote:
hi nanog folks, i have 7GB of darn pcap data separated into individual 50MB files.
i need a tool that can slurp in all this data and regurgitate
Collected via Wireshark. pretty, colourful and management-friendly reports. Windows or Linux.
any suggestions? thanks, Hank
http://www.riverbed.com/products/performance-management-control/network-perf...
On Apr 5, 2015, at 10:05 AM, Harry Hoffman <hhoffman@ip-solutions.net> wrote:
So, NTop or Afterglow might be a good start. They are both user-friendly tools that can ingest pcap files and output all sorts of pretty things.
Cheers, Harry
On 04/05/2015 09:36 AM, Hank Disuko wrote: Thanks for the response, Harry.
the basic stuff that managers are interested in seeing:
- yes what you said - who or what is taking up all my precious network bandwidth - colourful 3D pie charts
Kind regards,
Hank
Date: Sun, 5 Apr 2015 09:30:03 -0400 Subject: Re: lotsa pcap reporting From: hhoffman@ip-solutions.net To: gourmetcisco@hotmail.com CC: nanog@nanog.org
Hmm, maybe start with defining what you want to report about?
Top talkers, top protocols/ports, open services, DNS info, reconstructed files, etc...
Lots of different tools but it depends on what you want to do.
Cheers, Harry
On Apr 5, 2015 9:16 AM, Hank Disuko <gourmetcisco@hotmail.com> wrote:
hi nanog folks, i have 7GB of darn pcap data separated into individual 50MB files. Collected via Wireshark. i need a tool that can slurp in all this data and regurgitate pretty, colourful and management-friendly reports. Windows or Linux. any suggestions? thanks, Hank
This is fantastic. Thank-you everyone for your input. I have a busy day of software evaluation ahead of me. Thanks again! Hank
Subject: Re: lotsa pcap reporting From: john.mason.jr@gmail.com Date: Sun, 5 Apr 2015 10:44:56 -0400 To: nanog@nanog.org
http://www.riverbed.com/products/performance-management-control/network-perf...
On Apr 5, 2015, at 10:05 AM, Harry Hoffman <hhoffman@ip-solutions.net> wrote:
So, NTop or Afterglow might be a good start. They are both user-friendly tools that can ingest pcap files and output all sorts of pretty things.
Cheers, Harry
On 04/05/2015 09:36 AM, Hank Disuko wrote: Thanks for the response, Harry.
the basic stuff that managers are interested in seeing:
- yes what you said - who or what is taking up all my precious network bandwidth - colourful 3D pie charts
Kind regards,
Hank
Date: Sun, 5 Apr 2015 09:30:03 -0400 Subject: Re: lotsa pcap reporting From: hhoffman@ip-solutions.net To: gourmetcisco@hotmail.com CC: nanog@nanog.org
Hmm, maybe start with defining what you want to report about?
Top talkers, top protocols/ports, open services, DNS info, reconstructed files, etc...
Lots of different tools but it depends on what you want to do.
Cheers, Harry
On Apr 5, 2015 9:16 AM, Hank Disuko <gourmetcisco@hotmail.com> wrote:
hi nanog folks, i have 7GB of darn pcap data separated into individual 50MB files. Collected via Wireshark. i need a tool that can slurp in all this data and regurgitate pretty, colourful and management-friendly reports. Windows or Linux. any suggestions? thanks, Hank
participants (3)
-
Hank Disuko -
Harry Hoffman -
John Mason Jr