tcpflow
tcpflow is a program that captures data transmitted as part of TCP connections (flows), and stores the data in a way that is convenient for protocol analysis or debugging. tcpflow understands TCP sequence numbers and will correctly reconstruct data streams regardless of retransmissions or out-of-order delivery. Each stream is stored in a separate file for later analysis. tcpflow is designed to be portable, using the LBL packet capture library and GNU autoconf. It works under most UNIX platforms and for most common network interface types (ethernet, PPP, loopback, etc.).
| Tags | Networking Monitoring |
|---|---|
| Licenses | GPL |
| Operating Systems | POSIX |
| Implementation | C |
Recent releases
- 28 Feb 2001 23:05
Changes: A new -r option allows reading from tcpdump capture files. Various bugs were fixed: it compiles under newer libcs, the device is no longer left in promiscuous mode, and fgetpos/fsetpos brokenness was fixed. An RPM is now available.
- 30 Jan 2001 06:14
Changes: Capturing using the Linux loopback interface now works and more portability fixes (IRIX, Linux libc5, non-GCC compilers).
- 30 Jan 2001 06:14
Changes: Initial public release.
- All comments
Recent commentsGhm
Tcpdump <i>can</i> capture whole packets (-w file.log -s 0), not only their headers, not as there was written in this project's homepage :P