Comparing two Wireshark capture files

ip network-protocols
pdk picture pdk · Sep 28, 2011 · Viewed 18.2k times · Source

I want to use iperf to send some packets and receive the same at the client (which might have gone through different OSI layer processings). I want to check the packets sent are same as the received ones.

  1. Can I use Wireshark to capture the streams?
  2. Is there any way to compare them with the wireshark?

Or is there any other better way of doing this?

Answer

mMontu picture mMontu · Nov 13, 2013

You can use Wireshark to perform the capture, select the packets of each stream and export to text files (one per stream):

File -> Export -> as "Plain Text" file:
    - Check "Selected packet only"
    - Check "Packet summary line"
    - Check "Packet details: All expanded"

Then perform the diff with regular text tools as gnu diff, WinMerge or gvimdiff.

Related questions

How to get a list of all valid IP addresses in a local network?

Is there a way to get a list of all valid IP addresses in a local network? I mean all IP addresses that each user is using in the network.

Read More
How to get the primary IP address of the local machine on Linux and OS X?

I am looking for a command line solution that would return me the primary (first) IP address of the localhost, other than 127.0.0.1 The solution should work at least for Linux (Debian and RedHat) and OS X 10.7+ I am aware that …

Read More
Getting the IP address of the current machine using Java

I am trying to develop a system where there are different nodes that are run on different system or on different ports on the same system. Now all the nodes create a Socket with a target IP as the IP …

Read More