Interpreting Ethereal logs

**ixy** · February 15, 2008

Thanks for looking in! Fairly new to all this and have been given the task of finding an application that can interpret the log files generated by ethereal. Lucky me yeah? I can open them in note pad but I doubt that that will be very useful as an analysis tool so does anyone know of another app? Thanks in advance

**ixy** · February 15, 2008

small update, I've tried Sawmill but it does not read the .txt files I have. I guess this is not the native format for Ethereal logs.

**ixy** · February 18, 2008

Guess not then.

**bj-kaiser** · February 18, 2008

I'd guess you should try to use a PCAP file with sawmill. the TXT file isn't the raw data, since Ethereal is a protocol analyser and already has processed it when you save a report/dump to TXT.

just my 2 cents.

**ixy** · February 20, 2008

Thanks for the reply BJ!

I've also tried feeding Sawmill the pcap file but it didnt like that either I can view them in the ethereal client but what I would like to do is create graphs that show which application or service is talking to what the most. Appreciate any input.

**tain** · February 21, 2008

Try these Wireshark tools or Packetyzer.

**ixy** · February 26, 2008

Thanks tain, I'll have a look.

**ringfinger** · February 29, 2008

I too would recommend Wireshark.

**ixy** · March 3, 2008

Sign In

Interpreting Ethereal logs

Recommended Posts

ixy

ixy

ixy

bj-kaiser

ixy

tain

ixy

ringfinger

ixy

Please sign in to comment

Recently Browsing 0 members

Activity

Browse