RE: lotsa pcap reporting

[Hank Disuko <gourmetcisco () hotmail com>]

This is fantastic.
Thank-you everyone for your input.  I have a busy day of software evaluation ahead of me.
Thanks again!
Hank

> Subject: Re: lotsa pcap reporting
> From: john.mason.jr () gmail com
> Date: Sun, 5 Apr 2015 10:44:56 -0400
> To: nanog () nanog org
>
>
> http://www.riverbed.com/products/performance-management-control/network-performance-management/packet-analysis.html#Overview
>
>
> > On Apr 5, 2015, at 10:05 AM, Harry Hoffman <hhoffman () ip-solutions net> wrote:
> >
> > So, NTop or Afterglow might be a good start. They are both user-friendly
> > tools that can ingest pcap files and output all sorts of pretty things.
> >
> > Cheers,
> > Harry
> >
> >
> >
> > > On 04/05/2015 09:36 AM, Hank Disuko wrote:
> > > Thanks for the response, Harry.
> > >
> > > the basic stuff that managers are interested in seeing:
> > >
> > > - yes what you said
> > > - who or what is taking up all my precious network bandwidth
> > > - colourful 3D pie charts
> > >
> > > Kind regards,
> > >
> > > Hank
> > >
> > > > Date: Sun, 5 Apr 2015 09:30:03 -0400
> > > > Subject: Re: lotsa pcap reporting
> > > > From: hhoffman () ip-solutions net
> > > > To: gourmetcisco () hotmail com
> > > > CC: nanog () nanog org
> > > >
> > > > Hmm, maybe start with defining what you want to report about?
> > > >
> > > > Top talkers, top protocols/ports, open services, DNS info,
> > > reconstructed files, etc...
> > > > Lots of different tools but it depends on what you want to do.
> > > >
> > > > Cheers,
> > > > Harry
> > > >
> > > >
> > > >
> > > > > On Apr 5, 2015 9:16 AM, Hank Disuko <gourmetcisco () hotmail com> wrote:
> > > > >
> > > > > hi nanog folks,
> > > > > i have 7GB of darn pcap data separated into individual 50MB files.
> > > Collected via Wireshark.
> > > > > i need a tool that can slurp in all this data and regurgitate
> > > pretty, colourful and management-friendly reports.  Windows or Linux.
> > > > > any suggestions?
> > > > > thanks,
> > > > > Hank