NAME
tcpdump2xplot - converts tcpdump output to xplot input for analysis
SYNOPSIS
tcpdump2xplot [-?] [-c] [-help] [-list[filename]] [-plot[filename]] [-q]
[-r] [-s] [-t] [-w]
DESCRIPTION
tcpdump2xplot takes the output of
tcpdump -tt -S ...
and plots it in terms of sequence-number versus time, with other info
displayed (e.g., the TCP window, acks, etc.).
OPTIONS
-?, -help prints a help message. -c, ‘‘cumulative’’, adds all the data
coming from a server. -list[filename] prints the list of generated plot
files to filename. -plot[filename] plots the packets from filename. The
filename may be built out of a hostname and port number, e.g.:
abc.def.com:1234. The default is
fromhost:fromport-tohost:toport.xplot
where fromhost, fromport, thost, toport are extracted as conversations
from the tcpdump data. -q means "quiet" --- no visible output. -r means
use relative sequence numbers. -s means break up conversations on TCP
syns. -t convert time to decimal number of seconds. -w plots the TCP
window.
EXAMPLES
SEE ALSO
tcpdump(1), xplot.org(1)
BUGS
tcpdump2xplot may not deal properly with output from tcpdump that is not
TCP. Either filter to only tcp or be careful.
HISTORY
The tcpdump2xplot has been contributed by xplot.org users. Thanks to
Garret Wollman for contributing the original tcpdump2xplot.pl script and
thanks to Eric Prud’hommeaux (@ w3.org) for making
<http://www.w3.org/pub/WWW/config/tcpdump2xplot.pl> available, a much
improved version. The one included here is a slightly improved version
of Eric’s.