TCP Flow Analyzer
| Requires: |  com.ioninja.layer org.jancy.io.net |
| Status: | ENABLED (all requirements are satisifed) |
The TCP Flow Analyzer plugin is the layer version of TCP Flow Monitor. It can be attached on top of Pcap Sniffer or Ethernet Tap to convert the low-level packet view into the high-level data flow representation.
One thing which is usually lacking in packet-based sniffers is the ability to conveniently follow the conversation between the nodes. The TCP Flow Analyzer plugin provides an elegant way to see just the data and nothing else. Attach it as a layer on top of Pcap Sniffer or Ethernet Tap and you will receive a clean log of data exchanges reconstructed in real time from the captured packets behind the scene. You don't need to capture packets first and re-create TCP conversations later! The end result will look just like the one you see in TCP Proxy or TCP Server plugins.
The TCP Flow Analyzer plugin allows you to follow multiple TCP conversations at the same time. If the log gets too messy — apply an address filter and leave only a particular conversation while hiding everything else.
