Development/LibpcapFileFormat The libpcap file format is the main capture file format used in TcpDump/WinDump , Wireshark/TShark, snort, and many other networking tools. Overview This file format is a very basic format to save captured network data. As the libpcap library became the "de facto" standard of network capturing on UN*X, it became the "common denominator" for network capture files in the open source world (there seems to be no such thing as a "common denominator" in the commercial network capture world at all). Libpcap, and the Windows port of libpcap, WinPcap , use the same file format. Although it's sometimes assumed that this file format is suitable for Ethernet networks only, it can serve many different network types, examples can be found at the Wireshark's Supported Capture Media page; all listed types are handled by the libpcap file format.
Status of this Memo This document is an Internet-Draft and is in full conformance with all provisions of Section 10 of RFC 2026. Internet-Drafts are working documents of the Internet Engineering Task Force (IETF), its areas, and its working groups. Note that other groups may also distribute working documents as Internet-Drafts. Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as “work in progress.” PCAP Next Generation Dump File Format
NTDP Info Page The purpose of the list is to open the discussions for proposing a new specification for the automatic control of devices that generate and analyze traffic and/or emulate network protocols for the testing of a network or a specific network device. To perform either network or a network device specific testing, a tester will use a product to generate traffic, emulate routing protocols and emulate network end points, such as a network host or HTTP client. This product is referred to as a network testing device (NTD). The term network testing device should not be confused with the term device under test (DUT). In fact, the network testing device will most likely support the generation and analysis of traffic to validate the performance, scalability, etc of a device under test.
Internet Health Report