Hi,
I've written a function that lets you visualize any capture. It uses the graph_analyze functions
developed by Alejandro for the VoIP calls analysis, but populates the data with generic information
taken from the protocol and info columns in the packet list. I've added also a TCP-specific flow
graph that, I think, is what is referred in the first item in the general part wishlist as "bounce diagram".
The option appears under "Statistics", and has choices for general or TCP graph, and showing
all or only the currently displayed packets.
For a better visualization, I've modified the graph_analyze functions a bit, so that when only one
"conversation" is loaded -which is always the case in this function- it does not color the flow,
and it does not include the conversation number when saving to file.This has influence on the VoIP
calls list, when only one call is selected. I hope this is OK.
I've got some problem with my environment, so I have not been able to test this with GTK2. I'm trying
to fix this, but, in the meantime, if someone could test it it would be great.
Apart from applying the patch, flow_graph.c should be copied into the gtk directory.
I attach a couple of samples, showing the general and TCP graphs.
<<flow_graph.patch>> <<flow_graph.c>> <<ospf.jpg>> <<tcp.jpg>>
Regards,
Francisco
Attachment:
flow_graph.patch
Description: Binary data
Attachment:
flow_graph.c
Description: Binary data
Attachment:
ospf.jpg
Description: JPEG image
Attachment:
tcp.jpg
Description: JPEG image
