Home page logo
/

wireshark logo Wireshark mailing list archives

text2pcap enhancements
From: Alex Tomlinson <alex () aivor com>
Date: Fri, 13 Dec 2013 18:13:35 -0600

I needed a way to create realistic TCP PCAP files from text files,
so I updated text2pcap with the following new command-line options:

   IP dummy header fields:
      --ip-addrs <src>,<dst> Set source and destination addresses.
      --ip-id <id>           Identification value for dummy IP header.
                             If <id> is 0, then use random non-zero
   value in each
                             packet.  If <id> has a trailing '+', then
   start with
                             the given value an increment by one for
   each packet.
                             Example: --ip-id 100+ to use 100,101,102 etc.
      --ip-ttl <ttl>         Set TTL value.
      --ip-dscp <dscp>       Set DSCP value.

   TCP dummy header fields:
      --tcp-seq <seq>        Set initial sequence number. If <seq> is
   0, then
                             use random initial value.
      --tcp-ack <ack>[,<incr>[,<freq>]]
                             Set the initial ack number, increment and
   increment
                             frequency.  If <ack> is 0 then use a
   random initial
                             value.  If the optional <incr> is
   non-zero, then
                             increment <ack> by the given amount on
   <freq> packets.
                             Default value for <incr> is 1000, default
   value
                             for <freq> is 1.
      --tcp-win <win>        Set value for window field.



I also plan to make changes to support open and close handshakes.

Is there any interest integrating these changes into code base?

--Alex

___________________________________________________________________________
Sent via:    Wireshark-dev mailing list <wireshark-dev () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
             mailto:wireshark-dev-request () wireshark org?subject=unsubscribe

  By Date           By Thread  

Current thread:
  • text2pcap enhancements Alex Tomlinson (Dec 14)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]