Ethereal-users: Re: [Ethereal-users] ho do i peform calculations on captured packets?
On 08:59 PM 11/24/2005, Fripp, Benjamin wrote:
>I am a relatively new user to ethereal and I am trying to use it to determine characteristics about the system such is bandwidth utilisation. The main ones I am able to do, but I am having a bit of trouble calculation the maximum bandwidth utilisation. Is there a specific way of doing this? Or is there another script I could use. Do I simply need another program to be able to perform this task?
>
>Also the data we are collecting is very large in size even though we dont need very much information. Is there any way of being able to reduce the size of the recorded data?
>
>Any help would be greatly appreciated.
MRTG (rrd/cricket) tracking of router interfaces might be easier.
You can also limit the capture sizes to 64 bytes since all you need are headers. You don't actually need the full packet if you just want to graph throughput.
Try this:
1) Select the tcp flow that you want to track in ethereal.
2) Statistics, IO GRAPHS
3) In Y Axis, select Unit, Advanced
4) in the CALC field use: MAX for Graph1 and AVG for Graph2
5) to the right of MAX and AVG, type in "tcp.seq" (w/o the quotes)
6) Click on the GRAPH button on the left.
7) Change the X-Axis Tick Interval to suit your need.
hsb
