Riverbed Cascade Pilot Personal Edition: Take Wireshark to the Next Level - Advanced Triggers and Alerts; Web and VoIP Analytics; Long-Term Trending and Forensics; Deep Packet Analysis with Wireshark

Wireshark-users: Re: [Wireshark-users] Tool to compare dumps from two hosts and highlight inconsistencies

Date Index Thread Index Other Months All Mailing Lists

Date Prev Date Next Thread Prev Thread Next

From: Jeff Morriss <jeff.morriss.ws@xxxxxxxxx>
Date: Fri, 19 Mar 2010 15:21:48 -0400

Kamens, Jonathan wrote:

Greetings,
I'm trying to find a tool to do something that seems to obvious thatsomeone /must/ have written it already, but my Web searches have come upblank.
In a nutshell, I want to capture TCP packets on two hosts and then runthe two packet captures through a tool which analyzes both sides of theconnection and highlights anomalies. The one I'm most interested in ispackets that were sent by one side and never received by the other.
Does anything like this exist?


I think pcapdiff is supposed to do that:

http://www.eff.org/testyourisp/pcapdiff/

Follow-Ups:
- Re: [Wireshark-users] Tool to compare dumps from two hosts and highlight inconsistencies
  - From: Guy Harris
- Re: [Wireshark-users] Tool to compare dumps from two hosts and highlight inconsistencies
  - From: Sake Blok

References:
- [Wireshark-users] Tool to compare dumps from two hosts and highlight inconsistencies
  - From: Kamens, Jonathan

Prev by Date: [Wireshark-users] Tool to compare dumps from two hosts and highlight inconsistencies
Next by Date: Re: [Wireshark-users] Tool to compare dumps from two hosts and highlight inconsistencies
Previous by thread: [Wireshark-users] Tool to compare dumps from two hosts and highlight inconsistencies
Next by thread: Re: [Wireshark-users] Tool to compare dumps from two hosts and highlight inconsistencies
Index(es):
- Date
- Thread