tcptrace

tcptrace is a tool designed for analysis of TCP dump files.

It can tell you detailed information about TCP connections by sifting through dump files.

Specifically, tcptrace can produce several different types of output containing information on each connection seen, such as elapsed time, bytes and segments sent and recieved, retransmissions, round trip times, window advertisements, throughput, and more. It can also produce a number of graphs for further analysis.

tcptrace

License GNU GPL Developer Shawn Ostermann Website www.tcptrace.org Requirements libpcap Support: tcptrace manual, FAQ, Mailing List Selected Reviews:

Features include:

• Supports the following dump file formats
• Standard tcpdump
• Sun's snoop
• Macintosh Etherpeek
• HP/NetMetrix protocol analysis
• NS simulator output
• NetScout
• NLANR Tsh

Last Updated Sunday, May 04 2008 @ 06:40 AM EDT