Converting tcpdump txt file to .log

[tripialos]

Hi everyone.

Recently i was monitoring my home`s traffic with tcpdump. I did this by
executing the command:

Code:

$tcpdump -i eth0 > tcpdumpLog.txt

Unfortunately I realized my big mistake when i tried to open that file with
Wireshark..well..i couldn't open the file.

Generally my txt file is not recognized by any application that could help
me analyze that capture.

Is there any way to convert my tcpdumpLog.txt file to tcpdumpLog.log
file format?

Thanks in advance

Best Regards

[Irithori]

That output is only the human readable version and additionally only an overview.

For analysis via wireshark, you might want to capture the network traffic again with something like:

Code:

tcpdump -s0 -w <DUMPFILE>

Of course, you will want to add some filters to reflect your usecase better.

[tripialos]

Hi Irithori

Thanks a lot for your quick respond.

I am interesting on analyzing the traffic from my first capture. So i am desperate to find a way to convert the txt file to an ".log" file format.

Any ideas?

thanks again

[Irithori]

As I said, this output lacks information.
A conversion cannot add information, so you are SOL here.

If you cannot repeat the capture, then your best chance is to filter the log file you have with egrep for what you want to see.

[tripialos]

I hear you clear

Will try and do that


Thanks