RE: How to run tcptrace on Windows XP?

From: Barrett Hill (bhill@mitre.org)
Date: 07/29/04

• Next message: Russ Fink: "tcptrace problems with AVL vs. hash"
• Previous message: Leon Martin: "How to run tcptrace on Windows XP?"
• In reply to: Leon Martin: "How to run tcptrace on Windows XP?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Message-Id: <200407291235.i6TCZ7218074@smtp-mclean.mitre.org>
From: "Barrett Hill" <bhill@mitre.org>
Subject: RE: How to run tcptrace on Windows XP?
Date: Thu, 29 Jul 2004 08:35:00 -0400

Leon: your problem isn't unique to Windows XP, but here's a Windows XP
answer.

You are correct that you need a tcpdump file available. Winpcap does NOT
produce these by itself. Winpcap is a library of functions for programs to
use, there is no command line interface to it. Other packet capture programs
use winpcap to capture packets and save them to "tcpdump" files. Probably
the easiest tool for you to use on Windows XP is Ethereal (www.ethereal.com)
which is a nice GUI based packet capture program. Once you capture packets
and save them in a file (the tcpdump file), then you should be able to use
tcptrace to analyze the tcp sessions captured in the those files.

Hope that helps.

good luck,
Barrett Hill (x6094)
Senior Network Engineer
The MITRE Corporation (W907)
McLean, Virginia

-----Original Message-----
From: owner-tcptrace@tcptrace.org [mailto:owner-tcptrace@tcptrace.org] On
Behalf Of Leon Martin
Sent: Wednesday, July 28, 2004 6:30 PM
To: tcptrace@tcptrace.org
Subject: How to run tcptrace on Windows XP?

Hello,

Has anyone run tcptrace on Windows XP? I'd appreciate
it if anyone could help me.

I got the following problems when I ran tcptrace on
Windows XP.

I first downloaded WinPcap and installed it on my PC.
Then I installed the 6.6.0 version of tcptrace for the
same PC.

But when I clicked on the tcptrace executable, I saw a
comand window (I guess) appeared and then quickly
disappeared before I could know what was on the
command window.

I opend up a command window and ran the tcptrace
executable. I could execute the command "tcptrace -h".
But I could not run other commands because I did not
have a tcpdump file available, which was supposed to
be generated by WinPcap. How do you run WinPcap to get
the tcpdump file on a PC? Can we run WinPcap in a
command line fashion?

Thanks a lot!

Leon

                
__________________________________
Do you Yahoo!?
Yahoo! Mail - 50x more storage than other providers!
http://promotions.yahoo.com/new_mail
----------------------------------------------------------------------------
To unsubscribe, send a message with body containing "unsubscribe tcptrace"
to
majordomo@tcptrace.org.

----------------------------------------------------------------------------
To unsubscribe, send a message with body containing "unsubscribe tcptrace" to
majordomo@tcptrace.org.

• Next message: Russ Fink: "tcptrace problems with AVL vs. hash"
• Previous message: Leon Martin: "How to run tcptrace on Windows XP?"
• In reply to: Leon Martin: "How to run tcptrace on Windows XP?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : 07/29/04 EDT