On May 27, 2009, at 1:04 PM, Joyce Lin wrote:
Has there ever been any discussion about building in a visual
plugin to Wireshark so that you can easily see the relationships
between nodes (number of packets exchanged, over which ports, etc).
I'm talking about something that looks like the screenshots here: http://jpcap.sourceforge.net
.
People have probably thought about that, but I don't know anybody
who's implemented anything such as that.
There is, as far as I know, no reason why that couldn't be done as
either a built-in tap or a plugin (I suspect that if TShark were to
try to load a GUI plugin, the attempt would fail, and TShark would
just ignore it).
If there are no plans to build something like that into Wireshark,
do you know of any (cheap or free) tools that do this sort of packet
visualization effectively?
EtherApe?
http://etherape.sourceforge.net/
