8/10/2023 0 Comments Reddit wireshark alternative![]() It probably just logs flows at which point you might as well just feed it NetFlow. I wouldn't hold my breath on it fitting your described use-case, though. Splunk has similar options, but I haven't tried them yet as I don't have Splunk at home. You don't have to tcpdump/splitcap before TShark if you're fully committed to indexing everything. It needs a fair bit of clean-up of the JSON before sending into Elasticsearch, but that will give you full packet details in a searchable format (I strip the payload data fields, and you have to remove duplicates). You could tack on TShark (part of Wireshark) after this to index the more interesting flows into Elasticsearch, using the ek output filter and sending that into Elasticsearch. You could use tcpdump and then splitcap to give you a file system structure that would make it somewhat possible to search by IP or MAC (depending how you tell splitcap to split). It's pretty weak in its default state, but you can find and/or write protocol extensions if what you're looking for is more in line with performance monitoring not detailed packet logging. It doesn't record packet data or individual packet headers, just things like flow data and details like TLS SNI, etc. There is Packetbeat with Elasticsearch that will analyze some traffic and record protocol metrics. We ended up using Cisco Prime NAM and thank god they EOLd that product because it was a disappointment (it worked decently well for performance measurement, but continuous capture stopped working after an update early on). I've only POC'd it, because it's hella expensive and I haven't been able to get the business to justify the cost (the quoted price was more than our core network infrastructure). The cream of the crop is the SteelCentral NetShark product line (used to be Riverbed). Rule #6: Homework / Educational Questions must display effort. Rule #3: No BlogSpam / Traffic re-direction. Rule #2: No Certification Brain Dumps / Cheating. ![]() r/NetworkingJobs /r/sysadmin /r/ITCareerQuestions /r/CSCareerQuestions /r/ccna /r/juniper /r/jncia /r/ccnp /r/jncis /r/ccdp /r/jncip /r/ccie /r/ccde /r/cisco /r/jncie /r/HomeNetworking /r/TechSupport /r/Network /r/ipv6 /r/networkautomation /r/outages Related IRC Channels Discussions about ChatGPT and its impact to networking may be allowed.ChatGPT is not a source of truth rather it is a word-projection model.Content produced by ChatGPT/LLM is not permitted here.Topics that may affect one locale does not contribute enterprise networking discussions. ![]() Political posts tend to attract the wrong crowd and overly aggressive vocalization.This subreddit invites redditors from all around the globe to discuss enterprise networking. ![]() Show us how you think you should solve those issues, and we will validate or offer enhancement to your initial attempt.Don't ask us what we would buy for a given project./r/itcareerquestions /r/ccna and /r/ccent are all available for early-career discussions.This sub-reddit is dedicated to higher-level, more senior networking topics.Please review How to ask intelligent questions to avoid this issue.Professionals research & troubleshoot before they ask others for help. We expect our members to treat each other as fellow professionals.Any post that fails to display a minimal level of effort prior to asking for help is at risk of being Locked or Deleted.Surveys may be approved with the moderators' permission.But harassing members to check out your content will not be tolerated. You may share a URL to a blog that answers questions already in discussion. Directing our members to resources elsewhere is closely monitored.This sub prefers to share knowledge within the sub community.These posts will be deleted without mercy.These topics pollute our industry and devalue the hard work of others.Home Lab hardware discussions, as in "what do I buy for a homelab" are not permitted.Home Lab discussions, as a tool for learning & certifications are welcomed.Home Networks, even complex ones are best discussed elsewhere like /r/homenetworking.We aren't here to troubleshoot your "advanced" video game latency issues.Topics regarding senior-level networking career progression are permitted.This topic has been discussed at length, please use the search feature. Topics asking for information about getting into the networking field will be removed.Networking Career Topics are allowed with following guidelines: No Homework Topics without detailed, and specific questions.Enterprise /Data Center /SP /Business networking related.New Visitors are encouraged to read our wiki.Įnterprise & Business Networking topics such as:Įducational Topics & Questions are allowed with following guidelines: Routers, Switches, Firewalls and other Data Networking infrastructure discussions welcomed. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |