tcptrace finger example
This simple example is for a file
captured by the HP Net Metrix facility. If you run the program
tcptrace on the file, as such:
tcptrace finger.dump
you'll see the output:
9 packets seen, 9 TCP packets traced
1: seccy2.cs.ohiou.edu:40491 - thrawn.cs.ohiou.edu:finger (a2b) 4> 5< (complete)
meaning the the file contained 9 packets, all 9 of which were
TCP segments. There's a single TCP connection contained,
between host seccy2.cs.ohiou.edu:40491 and host
thrawn.cs.ohiou.edu:finger. There were 4 TCP segments
sent from the first machine to the second and 5 TCP segments
sent in the reverse direction.
If you run the program again, asking for "long" format output,
as in:
tcptrace -l finger.dump
you'll see more detailed
information
Shawn Ostermann
Last modified: Thu Mar 27 12:19:51 EST