Riverbed Cascade Pilot Personal Edition: Take Wireshark to the Next Level - Advanced Triggers and Alerts; Web and VoIP Analytics; Long-Term Trending and Forensics; Deep Packet Analysis with Wireshark

Wireshark-users: Re: [Wireshark-users] aggregating packages in one messages

Date Index Thread Index Other Months All Mailing Lists

Date Prev Date Next Thread Prev Thread Next

From: j.snelders@xxxxxxxxxx
Date: Thu, 3 Sep 2009 16:50:53 +0200

Hi Andrej,

Right-click a packet and select Follow TCP Stream.

or

Statistics -> Conversations -> TCP 
Right-click a stream and select Apply as Filter -> Selected -> A <--> B

You can save the displayed packets to a new capture file:
File -> Save as -> Packet Range: Displayed.

Hope this helps
Joan


On 3 Sep 2009 22:56:35 +0900 Andrej van der Zee wrote:
>Hi,
>
>Maybe a silly question, but I am looking for a way to aggregate
>packages that belong to one message (I am not sure if I am using the
>right terminology). I mean, suppose I send a 10k message from A to B,
>then the message is broken up into lets say 10 packages of 1k that
>appear in my cap file. I would like to deduct the size of the total
>message and the timestamp of the first package of the message from the
>cap file. How should I do this?
>
>Thank you,
>Andrej

Follow-Ups:
- Re: [Wireshark-users] aggregating packages in one messages
  - From: Andrej van der Zee

References:
- [Wireshark-users] aggregating packages in one messages
  - From: Andrej van der Zee

Prev by Date: [Wireshark-users] aggregating packages in one messages
Next by Date: Re: [Wireshark-users] FTP analysis
Previous by thread: [Wireshark-users] aggregating packages in one messages
Next by thread: Re: [Wireshark-users] aggregating packages in one messages
Index(es):
- Date
- Thread