It allows the user to display TCP/IP and other packets being transmitted or received over a network to which the computer is attached. Tcpdump: It is a data-network packet analyser computer program that runs under a command line interface.
Now, being able to capture and inspect those packets is important to understand in what type of traffic flowing in our network, we would like to protect.įor this analysis, a range of tools are available, and Wireshark & tcpdump are the 2 most common one. Traffic in a network is the basically a flow of packets. Traffic analysis is done by packet captures and packet analysis.
Packet capturing analysis, like log analysis, traffic analysis is also important for network security.
0 kommentar(er)
