Tcptrace
Encyclopedia
tcptrace is a tool written by Shawn Ostermann at Ohio University
, for analysis of TCP
dump files. It can take as input the files produced by several popular packet-capture program
s, including tcpdump
/WinDump/Wireshark
, snoop
, EtherPeek, and Agilent NetMetrix.
tcptrace can produce several different types of output containing information on each connection
seen, such as elapsed time, byte
s and segments sent and received, retransmissions, round trip times
, window advertisements, throughput
, and more. It can also produce a number of graphs
for further analysis. As of version five, minimal UDP
processing has been implemented in addition to the TCP capabilities.
Ohio University
Ohio University is a public university located in the Midwestern United States in Athens, Ohio, situated on an campus...
, for analysis of TCP
Transmission Control Protocol
The Transmission Control Protocol is one of the core protocols of the Internet Protocol Suite. TCP is one of the two original components of the suite, complementing the Internet Protocol , and therefore the entire suite is commonly referred to as TCP/IP...
dump files. It can take as input the files produced by several popular packet-capture program
Packet sniffer
A packet analyzer is a computer program or a piece of computer hardware that can intercept and log traffic passing over a digital network or part of a network...
s, including tcpdump
Tcpdump
tcpdump is a common packet analyzer that runs under the command line. It allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network to which the computer is attached...
/WinDump/Wireshark
Wireshark
Wireshark is a free and open-source packet analyzer. It is used for network troubleshooting, analysis, software and communications protocol development, and education...
, snoop
Snoop (software)
snoop is a very flexible command line packet analyzer included as part of Sun Microsystems' Solaris operating system. Its source code is available via the OpenSolaris project.For command line arguments see the snoop manpage.-See also:...
, EtherPeek, and Agilent NetMetrix.
tcptrace can produce several different types of output containing information on each connection
Telecommunication circuit
A telecommunication circuit is any line, conductor, or other conduit by which information is transmitted.A dedicated circuit, private circuit, or leased line is a line that is dedicated to only one use...
seen, such as elapsed time, byte
Byte
The byte is a unit of digital information in computing and telecommunications that most commonly consists of eight bits. Historically, a byte was the number of bits used to encode a single character of text in a computer and for this reason it is the basic addressable element in many computer...
s and segments sent and received, retransmissions, round trip times
Round-trip delay time
In telecommunications, the round-trip delay time or round-trip time is the length of time it takes for a signal to be sent plus the length of time it takes for an acknowledgment of that signal to be received...
, window advertisements, throughput
Throughput
In communication networks, such as Ethernet or packet radio, throughput or network throughput is the average rate of successful message delivery over a communication channel. This data may be delivered over a physical or logical link, or pass through a certain network node...
, and more. It can also produce a number of graphs
Computer graphics
Computer graphics are graphics created using computers and, more generally, the representation and manipulation of image data by a computer with help from specialized software and hardware....
for further analysis. As of version five, minimal UDP
User Datagram Protocol
The User Datagram Protocol is one of the core members of the Internet Protocol Suite, the set of network protocols used for the Internet. With UDP, computer applications can send messages, in this case referred to as datagrams, to other hosts on an Internet Protocol network without requiring...
processing has been implemented in addition to the TCP capabilities.